Case study on the use of PSA methods: Determining safety importance of systems and components at nuclear power plants

International Nuclear Information System (INIS)

1991-04-01

This case study emphasizes the step of probabilistic safety assessment (PSA) regarding identification of systems and components important to nuclear plant safety. An importance analysis involves combining information that is both qualitative and probabilistic in nature to generate a numerical ranking to determine the system and/or component failures that dominate the risk. Such a ranking can suggest where hardware, software, human factors and component design changes can be implemented to improve plant safety. Examples of using ranking methodology are described. A qualitative ranking criteria is discussed for components and systems that are not included in a PSA. 18 refs, 7 figs, 18 tabs

Influence of Non-safety Important Component on Maintenance Rule

International Nuclear Information System (INIS)

Ju, Tae Young; Kim, Wang Bae

2016-01-01

The Maintenance Rule (MR) programs in KHNP have been implemented since Jan 2009. KHNP is currently developing MR program for new built plant which has been constructed from December 2011. It is required to utilize plant-specific probabilistic safety analysis (PSA) result as risk significant criteria to determine which components are significantly important to safety. The criteria consist of three PSA risk values which are risk reduction worth (RRW), risk achievement worth (RAW) and core damage frequency (CDF) contribution. Most safety related components are classified as high risk significant, and non-safety related components as low safety significant in MR program. This paper presents the influence of the non-safety related component which has high PSA risk value on MR program of new built plant. It is considered that safety related system has at least one or more safety functions and some non-safety functions, but non-safety system doesn't have any safety function. The safety functions are defined as three functions which are required to maintain 1) integrity of reactor coolant pressure boundary, 2) capability to shut-down the reactor and maintain it in a safe shutdown, and 3) capability to prevent or mitigate the accident that could result in potential offsite exposure. The Maintenance Rule program is developed based on PSA result. Safety functions have high risk value in PSA program and considered HSS function in MR program. On the contrary, non-safety functions are generally has low risk value in PSA program and they are determined as LSS function in MR program. The AAC DG and its supporting systems are designed as non-safety systems which mean they don't have any safety function. But, AAC DG is treated as an important measure to mitigate accident in PSA program. It is determined as HSS function in MR program because it has high risk value in PSA program. AAC DG supporting systems does not have high risk value in operating plant's PSA program

Classification of transportation packaging and dry spent fuel storage system components according to importance to safety

International Nuclear Information System (INIS)

McConnell, J.W., Jr; Ayers, A.L. Jr; Tyacke, M.J.

1996-02-01

This report provides a graded approach for classification of components used in transportation packaging and dry spent fuel storage systems. This approach provides a method for identifying, the classification of components according to importance to safety within transportation packagings and dry spent fuel storage systems. Record retention requirements are discussed to identify the documentation necessary to validate that the individual components were fabricated in accordance with their assigned classification. A review of the existing regulations pertaining to transportation packagings and dry storage systems was performed to identify current requirements The general types of transportation packagings and dry storage systems were identified. Discussions were held with suppliers and fabricators of packagings and storage systems to determine current practices. The methodology used in this report is based on Regulatory Guide 7.10, Establishing Quality Assurance Programs for Packaging Used in the Transport of Radioactive Material. This report also includes a list of generic components for each of the general types of transportation packagings and spent fuel storage systems. The safety importance of each component is discussed, and a classification category is assigned

Results of an aging-related failure survey of light water safety systems and components

International Nuclear Information System (INIS)

Meale, B.M.; Satterwhite, D.G.; MacDonald, P.E.

1988-01-01

The collection and evaluation of operating experience data are necessary in determining the effects of aging on the safety of operating nuclear plants. This paper presents the final results of a two-year research effort evaluating aging impacts on components in light water reactor systems. This research was performed as a part of the Nuclear Plant Aging Research program, sponsored by the US Nuclear Regulatory Commission. Two unique types of data analyses were performed. In the first, an aging-survey study, aging-related failure data for fifteen light water reactor systems were obtained from the Nuclear Plant Reliability Data System (NPRDS). These included safety, support, and power conversion systems. A computerized sort of these records classified each record into one of five generic categories, based on the utility's choice of the failure's NPRDS cause category. Systems and components within the systems that were most affected by aging were identified. In the second analysis, information on aging-related reported causes of failures was evaluated for component failures reported to NPRDS for auxiliary feedwater, high pressure injection, service water, and Class 1E electrical power distribution systems. 3 refs., 13 figs., 4 tabs

Study on the Safety Classification Criteria of Mechanical Systems and Components for Open Pool-Type Research Reactors

International Nuclear Information System (INIS)

Belal, Al Momani; Jo, Jong Chull

2013-01-01

This paper describes a new compromised safety classification approach based on the comparative study of the different practices in safety classification of mechanical systems and components of open pool-type RRs, which have been adopted by several developed countries in the nuclear power area. It is hoped that the proposed safety classification criteria will be used to develop a harmonized consensus international standard. Different safety classification criteria for systems, structures, and components (SSCs) of nuclear reactors are used among the countries that export or import nuclear reactor technology, which may make the nuclear technology trade and exchange difficult. Thus, such various different approaches of safety classification need to be compromised to establish a global standard. This article proposes practicable optimized criteria for safety classification of SSCs for open pool-type research reactors (RRs)

Study on the Safety Classification Criteria of Mechanical Systems and Components for Open Pool-Type Research Reactors

Energy Technology Data Exchange (ETDEWEB)

Belal, Al Momani [Korea Advanced Institute of Science and Technology, Daejeon (Korea, Republic of); Jo, Jong Chull [Korea Institute of Nuclear Safety, Daejeon (Korea, Republic of)

2013-10-15

This paper describes a new compromised safety classification approach based on the comparative study of the different practices in safety classification of mechanical systems and components of open pool-type RRs, which have been adopted by several developed countries in the nuclear power area. It is hoped that the proposed safety classification criteria will be used to develop a harmonized consensus international standard. Different safety classification criteria for systems, structures, and components (SSCs) of nuclear reactors are used among the countries that export or import nuclear reactor technology, which may make the nuclear technology trade and exchange difficult. Thus, such various different approaches of safety classification need to be compromised to establish a global standard. This article proposes practicable optimized criteria for safety classification of SSCs for open pool-type research reactors (RRs)

Safety assessment of primary system components at the USNRC

Energy Technology Data Exchange (ETDEWEB)

Serpan, C Z; Chen, C Y; Taboada, A

1988-12-31

This document deals with the safety assessment in nuclear reactor components at the USNRC. The USNRC regulations and requirements concerning nuclear reactor design and operations are presented, together with guides and standards which describe how the actions should be implemented. The safety assessment relies on fracture analysis and Non Destructive Examination (NDE). (TEC).

Safety prediction for basic components of safety-critical software based on static testing

International Nuclear Information System (INIS)

Son, H.S.; Seong, P.H.

2000-01-01

The purpose of this work is to develop a safety prediction method, with which we can predict the risk of software components based on static testing results at the early development stage. The predictive model combines the major factor with the quality factor for the components, which are calculated based on the measures proposed in this work. The application to a safety-critical software system demonstrates the feasibility of the safety prediction method. (authors)

Optimal replacement policy for safety-related multi-component multi-state systems

International Nuclear Information System (INIS)

Xu Ming; Chen Tao; Yang Xianhui

2012-01-01

This paper investigates replacement scheduling for non-repairable safety-related systems (SRS) with multiple components and states. The aim is to determine the cost-minimizing time for replacing SRS while meeting the required safety. Traditionally, such scheduling decisions are made without considering the interaction between the SRS and the production system under protection, the interaction being essential to formulate the expected cost to be minimized. In this paper, the SRS is represented by a non-homogeneous continuous time Markov model, and its state distribution is evaluated with the aid of the universal generating function. Moreover, a structure function of SRS with recursive property is developed to evaluate the state distribution efficiently. These methods form the basis to derive an explicit expression of the expected system cost per unit time, and to determine the optimal time to replace the SRS. The proposed methodology is demonstrated through an illustrative example.

Safety prediction for basic components of safety critical software based on static testing

International Nuclear Information System (INIS)

Son, H.S.; Seong, P.H.

2001-01-01

The purpose of this work is to develop a safety prediction method, with which we can predict the risk of software components based on static testing results at the early development stage. The predictive model combines the major factor with the quality factor for the components, both of which are calculated based on the measures proposed in this work. The application to a safety-critical software system demonstrates the feasibility of the safety prediction method. (authors)

Assessment and management of ageing of major nuclear power plant components important to safety: Metal components of BWR containment systems

International Nuclear Information System (INIS)

2000-10-01

At present, there are over four hundred operational nuclear power plants (NPPs) in IAEA Member States. Operating experience has shown that ineffective control of the ageing degradation of the major NPP components (e.g. caused by unanticipated phenomena and by operating, maintenance or manufacturing errors) can jeopardize plant safety and also plant life. Ageing in these NPPs must therefore be effectively managed to ensure the availability of design functions throughout the plant service life. From the safety perspective, this means controlling within acceptable limits the ageing degradation and wear-out of plant components important to safety so that adequate safety margins remain, i.e. integrity and functional capability in excess of normal operating requirements. This TECDOC is one in a series of reports on the assessment and management of ageing of the major NPP components important to safety. The reports are based on experience and practices of NPP operators, regulators, designers, manufacturers, and technical support organizations and a widely accepted Methodology for the Management of Ageing of NPP Components Important to Safety, which was issued by the IAEA in 1992. The current practices for the assessment of safety margins (fitness for service) and the inspection, monitoring and mitigation of ageing degradation of selected components of Canada deuterium-uranium (CANDU) reactors, boiling water reactors (BWRs), pressurized water reactors (PWRs), and water moderated, water cooled energy reactors (WWERs) are documented in the reports. These practices are intended to help all involved directly and indirectly in ensuring the safe operation of NPPs, and to provide a common technical basis for dialogue between plant operators and regulators when dealing with age related licensing issues. The guidance reports are directed toward technical experts from NPPs and from regulatory, plant design, manufacturing and technical support organizations dealing with specific

Time dependent unavailability analysis of nuclear safety systems considering periodically tested components

International Nuclear Information System (INIS)

Goes, Alexandre Gromann de Araujo

1988-01-01

It is of utmost importance to have a computer code in order to analyze how different parameters (like test duration time) affect the unavailability of safety systems of nuclear. In this context, a study was performed in order to evaluate the model employed by the FRANTIC computer code, which performs detailed calculations on the contribution to the system unavailability originated by hardware failures, component tests and repairs, aiming at considering the influence of different test schemes on the system unavailability. It was shown, by means of the results attained that the numerical model used by the FRANTIC code and the analytical model proposed by APOSTOLAKIS and CHU (4) give unavailability values much similar when the component tests are supposed to be perfect. When a test is supposed to be imperfect (that is, when it may induce a test is supposed to be imperfect (that is, when it may induce a failure on the component being tested), the analytical model presents more conservative results. (author)

IR-360 nuclear power plant safety functions and component classification

International Nuclear Information System (INIS)

Yousefpour, F.; Shokri, F.; Soltani, H.

2010-01-01

The IR-360 nuclear power plant as a 2-loop PWR of 360 MWe power generation capacity is under design in MASNA Company. For design of the IR-360 structures, systems and components (SSCs), the codes and standards and their design requirements must be determined. It is a prerequisite to classify the IR-360 safety functions and safety grade of structures, systems and components correctly for selecting and adopting the suitable design codes and standards. This paper refers to the IAEA nuclear safety codes and standards as well as USNRC standard system to determine the IR-360 safety functions and to formulate the principles of the IR-360 component classification in accordance with the safety philosophy and feature of the IR-360. By implementation of defined classification procedures for the IR-360 SSCs, the appropriate design codes and standards are specified. The requirements of specific codes and standards are used in design process of IR-360 SSCs by design engineers of MASNA Company. In this paper, individual determination of the IR-360 safety functions and definition of the classification procedures and roles are presented. Implementation of this work which is described with example ensures the safety and reliability of the IR-360 nuclear power plant.

IR-360 nuclear power plant safety functions and component classification

Energy Technology Data Exchange (ETDEWEB)

Yousefpour, F., E-mail: fyousefpour@snira.co [Management of Nuclear Power Plant Construction Company (MASNA) (Iran, Islamic Republic of); Shokri, F.; Soltani, H. [Management of Nuclear Power Plant Construction Company (MASNA) (Iran, Islamic Republic of)

2010-10-15

The IR-360 nuclear power plant as a 2-loop PWR of 360 MWe power generation capacity is under design in MASNA Company. For design of the IR-360 structures, systems and components (SSCs), the codes and standards and their design requirements must be determined. It is a prerequisite to classify the IR-360 safety functions and safety grade of structures, systems and components correctly for selecting and adopting the suitable design codes and standards. This paper refers to the IAEA nuclear safety codes and standards as well as USNRC standard system to determine the IR-360 safety functions and to formulate the principles of the IR-360 component classification in accordance with the safety philosophy and feature of the IR-360. By implementation of defined classification procedures for the IR-360 SSCs, the appropriate design codes and standards are specified. The requirements of specific codes and standards are used in design process of IR-360 SSCs by design engineers of MASNA Company. In this paper, individual determination of the IR-360 safety functions and definition of the classification procedures and roles are presented. Implementation of this work which is described with example ensures the safety and reliability of the IR-360 nuclear power plant.

Optimizing Safety Stock Levels in Modular Production Systems Using Component Commonality and Group Technology Philosophy: A Study Based on Simulation

Directory of Open Access Journals (Sweden)

Kenneth Edgar Hernandez-Ruiz

2016-01-01

Full Text Available Modular production and component commonality are two widely used strategies in the manufacturing industry to meet customers growing needs for customized products. Using these strategies, companies can enhance their performance to achieve optimal safety stock levels. Despite the importance of safety stocks in business competition, little attention has been paid to the way to reduce them without affecting the customer service levels. This paper develops a mathematical model to reduce safety stock levels in organizations that employ modular production. To construct the model, we take advantage of the benefits of aggregate inventories, standardization of components, component commonality, and Group Technology philosophy in regard to stock levels. The model is tested through the simulation of three years of operation of two modular product systems. For each system, we calculated and compared the safety stock levels for two cases: (1 under the only presence of component commonality and (2 under the presence of both component commonality and Group Technology philosophy. The results show a reduction in safety stock levels when we linked the component commonality with the Group Technology philosophy. The paper presents a discussion of the implications of each case, features of the model, and suggestions for future research.

SAFE-KBS, Substantiating the safety of systems containing knowledge-based components

International Nuclear Information System (INIS)

Mesa, E.; Jimenez, A.

1998-01-01

The overall objective of the Safe-KBS project is to develop generic development and certification methodologies that allow the introduction of knowledge-based components in safety-related applications. The expert system technology presents a set of features, such as the capability to provide the rationale for its conclusions, that may significantly contribute to the new operation support systems. Nevertheless, the use of this technology in safety-related applications is limited by the lack of recognised methodologies and standards that allow a formal demonstration of the quality and reliability of these systems, as required for obtaining the approval for their use at nuclear power plants. The development methodology is structured in three hierarchical levels: life cycle model, i.e., processes and activities constituting the life cycle, life cycle plans, i.e., tasks, and support packages, i.e., set of techniques and methods to perform certain activities or tasks. The certification methodology consists of a set of certification requirements and a certification scheme for demonstrating the compliance with these requirements. This project was developed within the European framework ESPRIT, with the collaboration of Sextant, Cise, Qualience, Ilog, Computes, DNV and Uninfo. (Author)

The qualification of electrical components and instrumentations relevant to safety

CERN Document Server

Zambardi, F

1989-01-01

Systems and components relevant to safety of nuclear power plants must maintain their functional integrity in order to assure accident prevention and mitigation. Redundancy is utilized against random failures, nevertheless care must be taken to avoid common failures in redundant components. Main sources of degradation and common cause failures consist in the aging effects and in the changes of environmental conditions which occur during the plant life and the postulated accidents. These causes of degradation are expected to be especially significant for instrumentation and electrical equipment, which can have a primary role in safety systems. The qualification is the methodology by which component safety requirements can be met against the above mentioned causes of degradation. In this report the connection between the possible, plant conditions and the resulting degradation effects on components is preliminarily addressed. A general characterization of the qualification is then presented. Basis, methods and ...

Handbook of driver assistance systems basic information, components and systems for active safety and comfort

CERN Document Server

Hakuli, Stephan; Lotz, Felix; Singer, Christina

2016-01-01

This fundamental work explains in detail systems for active safety and driver assistance, considering both their structure and their function. These include the well-known standard systems such as Anti-lock braking system (ABS), Electronic Stability Control (ESC) or Adaptive Cruise Control (ACC). But it includes also new systems for protecting collisions protection, for changing the lane, or for convenient parking. The book aims at giving a complete picture focusing on the entire system. First, it describes the components which are necessary for assistance systems, such as sensors, actuators, mechatronic subsystems, and control elements. Then, it explains key features for the user-friendly design of human-machine interfaces between driver and assistance system. Finally, important characteristic features of driver assistance systems for particular vehicles are presented: Systems for commercial vehicles and motorcycles.

Lithuanian requirements for ageing management of systems and components important to safety of nuclear power plant

International Nuclear Information System (INIS)

Ramanauskiene, A.

2000-01-01

In this paper the Lithuanian requirements for ageing management of systems and components important to safety of Ignalina nuclear power plant (two RBMK-1500 water-cooled graphite moderated channel-type power reactors) are presented

Experience on environmental qualification of safety-related components for Darlington Nuclear Generating Station

International Nuclear Information System (INIS)

Yu, A.S.; Kukreti, B.M.

1987-01-01

The proliferation of Nuclear Power Plant safety concerns has lead to increasing attention over the Environmental Qualification (EQ) of Nuclear Power Plant Safety-Related Components to provide the assurance that the safety related equipment will meet their intended functions during normal operation and postulated accident conditions. The environmental qualification of these components is also a Licensing requirement for Darlington Nuclear Generating Station. This paper provides an overview of EQ and the experience of a pilot project, in the qualification of the Main Moderator System safety-related functions for the Darlington Nuclear Generating Station currently under construction. It addresses the various phases of qualification from the identification of the EQ Safety-Related Components List, definition of location specific service conditions (normal, adbnormal and accident), safety-related functions, Environmental Qualification Assessments and finally, an EQ system summary report for the Main Moderator System. The results of the pilot project are discussed and the methodology reviewed. The paper concludes that the EQ Program developed for Darlington Nuclear Generating Station, as applied to the qualification of the Main Moderator System, contained all the elements necessary in the qualification of safety-related equipment. The approach taken in the qualification of the Moderator safety-related equipment proves to provide a sound framework for the qualification of other safety-related components in the station

Aging techniques and qualified life for safety system components

International Nuclear Information System (INIS)

Weaver, W.W.

1980-01-01

Presently, the qualified life objective for Class IE safety system components in nuclear power plants is somewhat of a subjective engineering judgment. When the desired qualified life is ascertained, there are other choices that must be made (which may be influenced by the desired qualified life) such as selecting the aging procedure to use in the qualification process. Adding complexity to the situation is the fact that there are some limitations in aging techniques at the present time. This article presents (1) a discussion of the limitations in aging procedures, (2) the general philosophy of qualification, and (3) a proposed method for specifying a desired qualified life, which uses a probabilistic approach. The probabilistic approach proposed in item 3 can be applied to natural aging programs and eventually to accelerated aging once the present technical difficulties are overcome

Digital Components in Swedish NPP Power Systems

International Nuclear Information System (INIS)

Karlsson, Mattias; Eriksson, Tage

2015-01-01

Swedish nuclear power plants have over the last 20 years of operation modernised or exchanged several systems and components of the electrical power system. Within these works, new components based on digital technology have been employed in order to realize functionality that was previously achieved by using electro-mechanical or analogue technology. Components and systems such as relay protection, rectifiers, inverters, variable speed drives and diesel-generator sets are today equipped with digital components. Several of the systems and components fulfil functions with a safety-role in the NPP. Recently, however, a number of incidents have occurred which highlight deficiencies in the design or HMI of the equipment, which warrants questions whether there are generic problems with some applications of digital components that needs to be addressed. The use of digital components has presented cost effective solutions, or even the only available solution on the market enabling a modernisation. The vast majority of systems using digital components have been operating without problems and often contribute to improved safety but the challenge of non-detectable, or non-identifiable, failure modes remain. In this paper, the extent to which digital components are used in Swedish NPP power systems will be presented including a description of typical applications. Based on data from maintenance records and fault reports, as well as interviews with designers and maintenance personnel, the main areas where problems have been encountered and where possible risks have been identified will be described. The paper intends to investigate any 'tell-tales' that could give signals of unwanted behaviour. Furthermore, particular benefits experienced by using digital components will be highlighted. The paper will also discuss the safety relevance of these findings and suggest measures to improve safety in the application of digital components in power systems. (authors)

Time-independent and time-dependent contributions to the unavailability of standby safety system components

International Nuclear Information System (INIS)

Lofgren, E.V.; Uryasev, S.; Samanta, P.

1997-01-01

The unavailability of standby safety system components due to failures in nuclear power plants is considered to involve a time-independent and a time-dependent part. The former relates to the component's unavailability from demand stresses due to usage, and the latter represents the component's unavailability due to standby-time stresses related to the environment. In this paper, data from the nuclear plant reliability data system (NPRDS) were used to partition the component's unavailability into the contributions from standby-time stress (i.e., due to environmental factors) and demand stress (i.e., due to usage). Analyses are presented of motor-operated valves (MOVs), motor-driven pumps (MDPs), and turbine-driven pumps (TDPs). MOVs fail predominantly (approx. 78 %) from environmental factors (standby-time stress failures). MDPs fail slightly more frequently from demand stresses (approx. 63 %) than standby-time stresses, while TDPs fail predominantly from standby-time stresses (approx. 78 %). Such partitions of component unavailability have many uses in risk-informed and performance-based regulation relating to modifications to Technical Specification, in-service testing, precise determination of dominant accident sequences, and implementation of maintenance rules

Reactor system safety assurance

International Nuclear Information System (INIS)

Mattson, R.J.

1984-01-01

The philosophy of reactor safety is that design should follow established and conservative engineering practices, there should be safety margins in all modes of plant operation, special systems should be provided for accidents, and safety systems should have redundant components. This philosophy provides ''defense in depth.'' Additionally, the safety of nuclear power plants relies on ''safety systems'' to assure acceptable response to design basis events. Operating experience has shown the need to study plant response to more frequent upset conditions and to account for the influence of operators and non-safety systems on overall performance. Defense in depth is being supplemented by risk and reliability assessment

Safety aspects of nuclear power plant component aging

International Nuclear Information System (INIS)

Conte, M.; Deletre, G.; Henry, J.Y.

1988-01-01

The safety of nuclear plants depends on the capacity of the systems they are composed to perform the functions they were designed for. The identification and understanding of phenomena liable to degrade this operational capacity thus constitute one of the safety problems for which allowance must be made at the earliest stage of a project. Aging, a natural and hence unavoidable process affecting all the components of an installation, was identified at a very early stage as being one of these phenomena. The investigation and implementation of solutions to the safety problems associated to aging make it necessary to: defining the domain in which the consequences of aging are to be evaluated, identifying the parameters involved, identifying the components sensitive to these parameters, understanding the mechanisms which govern its evolution. The results of qualification tests, and of tests and checks carried out at different stages of construction and operation, as well as allowance for operating experience, constitute the necessary basis for establishing or improving the regulatory requirements. The procedures for validating components and systems of the installation are also drawn up on the basis of these tests. Finally, the actions initiated within the scope of research and development programmes supply the additional data necessary for such validation, and provide the indispensable support for knowledge improvement

A plan for safety and integrity of research reactor components

International Nuclear Information System (INIS)

Moatty, Mona S. Abdel; Khattab, M.S.

2013-01-01

Highlights: ► A plan for in-service inspection of research reactor components is put. ► Section XI of the ASME Code requirements is applied. ► Components subjected to inspection and their classes are defined. ► Flaw evaluation and its acceptance–rejection criteria are reviewed. ► A plan of repair or replacement is prepared. -- Abstract: Safety and integrity of a research reactor that has been operated over 40 years requires frequent and thorough inspection of all the safety-related components of the facility. The need of increasing the safety is the need of improving the reliability of its systems. Diligent and extensive planning of in-service inspection (ISI) of all reactor components has been imposed for satisfying the most stringent safety requirements. The Safeguards Officer's responsibilities of Section XI of the American Society of Mechanical Engineers (ASME) Boiler and Pressure Vessel Code ASME Code have been applied. These represent the most extensive and time-consuming part of ISI program, and identify the components subjected to inspection and testing, methods of component classification, inspection and testing techniques, acceptance/rejection criteria, and the responsibilities. The paper focuses on ISI planning requirements for welded systems such as vessels, piping, valve bodies, pump casings, and control rod-housing parts. The weld in integral attachments for piping, pumps, and valves are considered too. These are taken in consideration of safety class (1, 2, 3, etc.), reactor age, and weld type. The parts involve in the frequency of inspection, the examination requirements for each inspection, the examination method are included. Moreover the flaw evaluation, the plan of repair or replacement, and the qualification of nondestructive examination personnel are considered

Development of Non-safety System Architecture and Evaluation of Components/Systems

International Nuclear Information System (INIS)

Oh, I. S.; Lee, C. K.; Kim, D. H.; Lee, J. W.; Lee, D. Y.; Park, W. M.; Hwang, I. K.; Hur, S.; Kim, J. T.; Park, J. C.; Lee, J. W.

2007-10-01

We describe in this report the works performed for a technical evaluation of the non-safety digital control system of the KNICS, the non-safety process control system of the KNICS, a communication load analysis for the MMIS (including both the non-safety and the safety systems) of the KNICS, the development of MMI and an implementation of the logic for the CVCS, and the works performed to support writing a proposal needed for bidding an I and C system based on the KNICS. The technical evaluation results were aimed to be used by the designers to detect parts needed to be corrected or to be newly inserted, and also by the developers during the development phase. The requirement specifications and the data requirement characteristics have been identified for each subsystem of the determined KNICS structure. For each communication node, the specifications related to the data transfer including the data capacity for interfaces, delay time for the data transfer, and the marginal availability of its performance capabilities have been analyzed to identify the amount of data transfer and hence to verify that both of the designed structures for the safety related communications network and for the digital communications network are appropriate. The results of the supporting work performed for writing the technical specifications related to each subsystem of the KNICS structure, are expected to be useful in writing a proposal for the expected Uljin new units 1 and 2, and in the I and C upgrade for any of the existing nuclear power plants under operation. Also included in this report are the descriptions on a design of the chemical volume control system (CVCS), on the supporting work performed to draw the logic diagrams for CVCS using the tool ISaGRAF, and on the generation of a set of system displays to be used as references

Development of Non-safety System Architecture and Evaluation of Components/Systems

Energy Technology Data Exchange (ETDEWEB)

Oh, I. S.; Lee, C. K.; Kim, D. H.; Lee, J. W.; Lee, D. Y.; Park, W. M.; Hwang, I. K.; Hur, S.; Kim, J. T.; Park, J. C.; Lee, J. W

2007-10-15

We describe in this report the works performed for a technical evaluation of the non-safety digital control system of the KNICS, the non-safety process control system of the KNICS, a communication load analysis for the MMIS (including both the non-safety and the safety systems) of the KNICS, the development of MMI and an implementation of the logic for the CVCS, and the works performed to support writing a proposal needed for bidding an I and C system based on the KNICS. The technical evaluation results were aimed to be used by the designers to detect parts needed to be corrected or to be newly inserted, and also by the developers during the development phase. The requirement specifications and the data requirement characteristics have been identified for each subsystem of the determined KNICS structure. For each communication node, the specifications related to the data transfer including the data capacity for interfaces, delay time for the data transfer, and the marginal availability of its performance capabilities have been analyzed to identify the amount of data transfer and hence to verify that both of the designed structures for the safety related communications network and for the digital communications network are appropriate. The results of the supporting work performed for writing the technical specifications related to each subsystem of the KNICS structure, are expected to be useful in writing a proposal for the expected Uljin new units 1 and 2, and in the I and C upgrade for any of the existing nuclear power plants under operation. Also included in this report are the descriptions on a design of the chemical volume control system (CVCS), on the supporting work performed to draw the logic diagrams for CVCS using the tool ISaGRAF, and on the generation of a set of system displays to be used as references.

Processing and storage of blood components: strategies to improve patient safety

Directory of Open Access Journals (Sweden)

Pietersz RNI

2015-08-01

Full Text Available Ruby NI Pietersz, Pieter F van der Meer Department of Product and Process Development, Sanquin Blood Bank, Amsterdam, the Netherlands Abstract: This review focuses on safety improvements of blood processing of various blood components and their respective storage. A solid quality system to ensure safe and effective blood components that are traceable from a donor to the patient is the foundation of a safe blood supply. To stimulate and guide this process, National Health Authorities should develop guidelines for blood transfusion, including establishment of a quality system. Blood component therapy enabled treatment of patients with blood constituents that were missing, only thus preventing reactions to unnecessarily transfused elements. Leukoreduction prevents many adverse reactions and also improves the quality of the blood components during storage. The safety of red cells and platelets is improved by replacement of plasma with preservative solutions, which results in the reduction of isoantibodies and plasma proteins. Automation of blood collection, separation of whole blood into components, and consecutive processing steps, such as preparation of platelet concentrate from multiple donations, improves the consistent composition of blood components. Physicians can better prescribe the number of transfusions and therewith reduce donor exposure and/or the risk of pathogen transmission. Pathogen reduction in cellular blood components is the latest development in improving the safety of blood transfusions for patients. Keywords: blood components, red cell concentrates, platelet concentrates, plasma, transfusion, safety 

Assessment of ALWR passive safety system reliability. Phase 1: Methodology development and component failure quantification

International Nuclear Information System (INIS)

Hake, T.M.; Heger, A.S.

1995-04-01

Many advanced light water reactor (ALWR) concepts proposed for the next generation of nuclear power plants rely on passive systems to perform safety functions, rather than active systems as in current reactor designs. These passive systems depend to a great extent on physical processes such as natural circulation for their driving force, and not on active components, such as pumps. An NRC-sponsored study was begun at Sandia National Laboratories to develop and implement a methodology for evaluating ALWR passive system reliability in the context of probabilistic risk assessment (PRA). This report documents the first of three phases of this study, including methodology development, system-level qualitative analysis, and sequence-level component failure quantification. The methodology developed addresses both the component (e.g. valve) failure aspect of passive system failure, and uncertainties in system success criteria arising from uncertainties in the system's underlying physical processes. Traditional PRA methods, such as fault and event tree modeling, are applied to the component failure aspect. Thermal-hydraulic calculations are incorporated into a formal expert judgment process to address uncertainties in selected natural processes and success criteria. The first phase of the program has emphasized the component failure element of passive system reliability, rather than the natural process uncertainties. Although cursory evaluation of the natural processes has been performed as part of Phase 1, detailed assessment of these processes will take place during Phases 2 and 3 of the program

The qualification of electrical components and instrumentations relevant to safety

International Nuclear Information System (INIS)

Zambardi, F.

1989-03-01

Systems and components relevant to safety of nuclear power plants must maintain their functional integrity in order to assure accident prevention and mitigation. Redundancy is utilized against random failures, nevertheless care must be taken to avoid common failures in redundant components. Main sources of degradation and common cause failures consist in the aging effects and in the changes of environmental conditions which occur during the plant life and the postulated accidents. These causes of degradation are expected to be especially significant for instrumentation and electrical equipment, which can have a primary role in safety systems. The qualification is the methodology by which component safety requirements can be met against the above mentioned causes of degradation. In this report the connection between the possible, plant conditions and the resulting degradation effects on components is preliminarily addressed. A general characterization of the qualification is then presented. Basis, methods and peculiar aspects are discussed and the qualification by testing is taken into special account. Technical and organizational aspects related to a plant qualification program are also focused. The report ends with a look to the most significant research and development activities. (author)

Routine testing on protective and safety systems and components

International Nuclear Information System (INIS)

Rysy, W.

1977-01-01

1) In-process inspection, tests during commissioning. 2) Tests during reactor operation. 2.1) Reactor protection system, for example: continuous auto-testing by a dynamic system, check of the output signals; 2.2) safety features: selected examples: functional tests on the ECCS, trial operation of the emergency diesels. 3) Tests during refuelling phase. 3.1) Containment: Leakage rate tests, leak testing; 3.2) coolant system: selected examples: inservice inspections of the pressure vessel, eddy current testing of the steam generator, functional tests of safety valves. (orig./HP) [de

Safety system function trends

International Nuclear Information System (INIS)

Johnson, C.

1989-01-01

This paper describes research to develop risk-based indicators of plant safety performance. One measure of the safety-performance of operating nuclear power plants is the unavailability of important safety systems. Brookhaven National Laboratory and Science Applications International Corporation are evaluating ways to aggregate train-level or component-level data to provide such an indicator. This type of indicator would respond to changes in plant safety margins faster than the currently used indicator of safety system unavailability (i.e., safety system failures reported in licensee event reports). Trends in the proposed indicator would be one indication of trends in plant safety performance and maintenance effectiveness. This paper summarizes the basis for such an indicator, identifies technical issues to be resolved, and illustrates the potential usefullness of such indicators by means of computer simulations and case studies

Segmentation Scheme for Safety Enhancement of Engineered Safety Features Component Control System

International Nuclear Information System (INIS)

Lee, Sangseok; Sohn, Kwangyoung; Lee, Junku; Park, Geunok

2013-01-01

Common Caused Failure (CCF) or undetectable failure would adversely impact safety functions of ESF-CCS in the existing nuclear power plants. We propose the segmentation scheme to solve these problems. Main function assignment to segments in the proposed segmentation scheme is based on functional dependency and critical function success path by using the dependency depth matrix. The segment has functional independence and physical isolation. The segmentation structure is that prohibit failure propagation to others from undetectable failures. Therefore, the segmentation system structure has robustness to undetectable failures. The segmentation system structure has functional diversity. The specific function in the segment defected by CCF, the specific function could be maintained by diverse control function that assigned to other segments. Device level control signals and system level control signals are separated and also control signal and status signals are separated due to signal transmission paths are allocated independently based on signal type. In this kind of design, single device failure or failures on signal path in the channel couldn't result in the loss of all segmented functions simultaneously. Thus the proposed segmentation function is the design scheme that improves availability of safety functions. In conventional ESF-CCS, the single controller generates the signal to control the multiple safety functions, and the reliability is achieved by multiplication within the channel. This design has a drawback causing the loss of multiple functions due to the CCF (Common Cause Failure) and single failure Heterogeneous controller guarantees the diversity ensuring the execution of safety functions against the CCF and single failure, but requiring a lot of resources like manpower and cost. The segmentation technology based on the compartmentalization and functional diversification decreases the CCF and single failure nonetheless the identical types of controllers

Segmentation Scheme for Safety Enhancement of Engineered Safety Features Component Control System

Energy Technology Data Exchange (ETDEWEB)

Lee, Sangseok; Sohn, Kwangyoung [Korea Reliability Technology and System, Daejeon (Korea, Republic of); Lee, Junku; Park, Geunok [Korea Atomic Energy Research Institute, Daejeon (Korea, Republic of)

2013-05-15

Common Caused Failure (CCF) or undetectable failure would adversely impact safety functions of ESF-CCS in the existing nuclear power plants. We propose the segmentation scheme to solve these problems. Main function assignment to segments in the proposed segmentation scheme is based on functional dependency and critical function success path by using the dependency depth matrix. The segment has functional independence and physical isolation. The segmentation structure is that prohibit failure propagation to others from undetectable failures. Therefore, the segmentation system structure has robustness to undetectable failures. The segmentation system structure has functional diversity. The specific function in the segment defected by CCF, the specific function could be maintained by diverse control function that assigned to other segments. Device level control signals and system level control signals are separated and also control signal and status signals are separated due to signal transmission paths are allocated independently based on signal type. In this kind of design, single device failure or failures on signal path in the channel couldn't result in the loss of all segmented functions simultaneously. Thus the proposed segmentation function is the design scheme that improves availability of safety functions. In conventional ESF-CCS, the single controller generates the signal to control the multiple safety functions, and the reliability is achieved by multiplication within the channel. This design has a drawback causing the loss of multiple functions due to the CCF (Common Cause Failure) and single failure Heterogeneous controller guarantees the diversity ensuring the execution of safety functions against the CCF and single failure, but requiring a lot of resources like manpower and cost. The segmentation technology based on the compartmentalization and functional diversification decreases the CCF and single failure nonetheless the identical types of

Test to prove the resistance to incidents of components of electric and control systems in the safety containment of nuclear power plants

International Nuclear Information System (INIS)

1982-01-01

The marginal program for proving the suitability of safety-relevant components of electric and control systems in the safety containment during a loss-of-coolant incident is described. Variant test conditions are established in the component-specific test program. Special attention has been paid to the representation of the course of pressure and temperature for the performance test of the valve room of the Nuclear Power Plant Philippsburg 2. (DG) [de

Safety-related control air systems

International Nuclear Information System (INIS)

Anon.

1977-01-01

This Standard applies to those portions of the control air system that furnish air required to support, control, or operate systems or portions of systems that are safety related in nuclear power plants. This Standard relates only to the air supply system(s) for safety-related air operated devices and does not apply to the safety-related air operated device or to air operated actuators for such devices. The objectives of this Standard are to provide (1) minimum system design requirements for equipment, piping, instruments, controls, and wiring that constitute the air supply system; and (2) the system and component testing and maintenance requirements

Safety recommendation component of mobile information assistant of the tourist

Science.gov (United States)

Savchuk, Valeriya V.; Kunanec, Natalia E.; Pasichnyk, Volodymyr V.; Popiel, Piotr; Weryńska-Bieniasz, RóŻa; Kashaganova, Gulzhamal; Kalizhanova, Aliya

2017-08-01

The goal of article is to introduce and justify the need for the safety system components of Mobile Information of the tourist (MIAT). One of the objectives of the system is to determine the level of risk in a particular tourist destination on the basis of available information in the knowledge base.

Ventilation systems and components of nuclear power plants

International Nuclear Information System (INIS)

1997-01-01

The most important radiation and nuclear safety requirements for the design and manufacture of nuclear power plant ventilation systems and components are presented in the guide. Also the regulatory activities of the Finnish Centre for Radiation and Nuclear Safety (STUK) as regards the ventilation systems and components are explained. Documents and data which shall be submitted to STUK during the various phases of the regulatory procedure relating to the design, construction, commissioning and operation of the nuclear power plants are presented. (13 refs.)

Benefits of a systematic approach to maintenance for safety and safety related systems

International Nuclear Information System (INIS)

Dam, R.F.; Ayazzudin, S.; Nickerson, J.H.

2003-01-01

For safety and safety-related systems, nuclear plants have to balance the requirements of demonstrating the reliability of each system, while maintaining the system and plant availability. With the goal of demonstrating statistical reliability, these systems have extensive testing programs, which often results in system unavailability and this can impact the plant capacity. The inputs to the process are often safety and regulatory related, resulting in programs that provide a high level of scrutiny. In such cases, the value of the application of a Systematic Assessment of Maintenance (SAM) process, such as Reliability Centered Maintenance (RCM), is questioned. The special case of Standby-Safety systems was discussed in a previous paper, where it was demonstrated how SAM techniques provide useful insight into current system performance, the impact of testing on component and system reliability, and how PSA considerations can be integrated into a comprehensive Maintenance, Surveillance, and Inspection (MSI) strategy. Although the system reliability requirements are an important part of the strategy evaluation, SAM techniques provide a systematic assessment within a broader context. Testing is only one part of an overall strategy focused on ensuring that component function is maintained through a combination of monitoring technologies (including testing), predictive techniques, and intrusive maintenance strategies. Each strategy is targeted to known component degradation mechanisms. This thinking can be extended to safety and safety related systems in general. Over the past 6 years, AECL has been working with CANDU utilities in the development and implementation of a comprehensive and integrated Plant Life Management (PLiM) program. As part of developing a comprehensive plant asset management approach, SAM techniques are used to develop a technical basis that not only works towards ensuring reliable operation of plant systems, but also facilitates the optimization and

Safety surveillance of activities on nuclear pressure components in China

International Nuclear Information System (INIS)

Li Ganjie; Li Tianshu; Yan Tianwen

2005-01-01

The nuclear pressure components, which perform the nuclear safety functions, are one of the key physical barriers for nuclear safety. For the national strategy on further development of nuclear power and localization of nuclear pressure components, there still exist some problems in preparedness on the localization. As for the technical basis, what can not be overlooked is the management. Aiming at the current problems, National Nuclear Safety Administration (NNSA) has taken measures to strengthen the propagation and popularization of nuclear safety culture, adjust the review and approval policies for nuclear pressure components qualification license, establish more stringent management requirements, and enhance the surveillance of activities on nuclear pressure equipment. Meanwhile, NNSA has improved the internal management and the regulation efficiency on nuclear pressure components. At the same time, with the development and implementation of 'Rules on the Safety Regulation for Nuclear Safety Important Components' to be promulgated by the State Council of China, NNSA will complete and improve the regulation on nuclear pressure components and other nuclear equipment. (authors)

Software Quality Assurance for Nuclear Safety Systems

International Nuclear Information System (INIS)

Sparkman, D R; Lagdon, R

2004-01-01

The US Department of Energy has undertaken an initiative to improve the quality of software used to design and operate their nuclear facilities across the United States. One aspect of this initiative is to revise or create new directives and guides associated with quality practices for the safety software in its nuclear facilities. Safety software includes the safety structures, systems, and components software and firmware, support software and design and analysis software used to ensure the safety of the facility. DOE nuclear facilities are unique when compared to commercial nuclear or other industrial activities in terms of the types and quantities of hazards that must be controlled to protect workers, public and the environment. Because of these differences, DOE must develop an approach to software quality assurance that ensures appropriate risk mitigation by developing a framework of requirements that accomplishes the following goals: (sm b ullet) Ensures the software processes developed to address nuclear safety in design, operation, construction and maintenance of its facilities are safe (sm b ullet) Considers the larger system that uses the software and its impacts (sm b ullet) Ensures that the software failures do not create unsafe conditions Software designers for nuclear systems and processes must reduce risks in software applications by incorporating processes that recognize, detect, and mitigate software failure in safety related systems. It must also ensure that fail safe modes and component testing are incorporated into software design. For nuclear facilities, the consideration of risk is not necessarily sufficient to ensure safety. Systematic evaluation, independent verification and system safety analysis must be considered for software design, implementation, and operation. The software industry primarily uses risk analysis to determine the appropriate level of rigor applied to software practices. This risk-based approach distinguishes safety

Study of system safety evaluation on LTO of national project. NISA safety research project on system safety of nuclear power plants

International Nuclear Information System (INIS)

Takizawa, Masayuki; Sekimura, Naoto; Miyano, Hiroshi; Aoyama, Katsunobu

2012-01-01

Japanese safety regulatory body, that is, Nuclear and Industrial Safety Agency (NISA) started a 5-year national safety research project as 'the first stage' from 2006 FY to 2010 FY whose objective is 'Improve the technical information basis in order to utilize knowledge as well as information related to ageing management and maintenance of NPPs. Fukushima disaster happened in March 2011, and the priority of research needs for ageing management dramatically changed in Japan. The second-stage national project started in October 2011 with the concept of 'system safety' of NNPs where not only ageing management on degradation phenomena of important components but also safety management on total plant systems are paid attention to. The second-stage project is so called 'Japanese Ageing Management Program for System Safety (JAMPSS)'. (author)

An approach to safety problems relating to ageing of nuclear power plant components

International Nuclear Information System (INIS)

Conte, M.; Deletre, G.; Henry, J.Y.; Le Meur, M.

1989-10-01

The safety of nuclear power plants, in France, is discussed. The attention is focused on the ageing phenomena, as a potential cause of the degradation of the systems functional capabilities. The allowance for ageing in design and its importance on safety, are analyzed. The understanding of phenomena relating to ageing and the components surveillance, are considered. As the effective ageing on the components of nuclear power plants is not fully understood, technical improvements and more accurate analysis are required

Russian Federation: Passive Safety Components for Lead-Cooled Reactor Facilities

International Nuclear Information System (INIS)

Sarkulov, M.K.

2015-01-01

There is a specific range of engineered features used traditionally in nuclear technology. As a rule, main reactivity control systems use conventional active actuators with solid-body control members and/or liquid systems with active injection of liquid absorber. Other operation principles are normally chosen for additional systems. Currently, the traditional approach to improving the reliability of a reactor facility suggests an increase in the number of safety components and systems which provide for mutual assurance or assist each other. There is a great variety of additional reactivity control members designed for the reactor facility control and shutdown, including hydrodynamic members in the form of rods (acting from the coolant flow); floating-type members (absorbers and displacers); storage-type and liquid members (used in separate channels); bulk members (pebble absorber); gas-based members (with a gas absorber); shape-memory members and others. Hydrodynamic systems were introduced at Beloyarsk NPP Units 1 and 2 and proposed for use in other facility designs, Gases and bulk materials have not been commonly accepted: the former because of the high cost of high-efficiency gaseous absorbers, and the latter because of the complecated monitoring of the bulk material position. It is rather difficult and not always necessary to use the same engineering approaches in new lead-cooled reactor facilities as in traditional ones. Similarly to the development of traditional safety systems, passive safety components (devices) shall be designed according to the essential requirements of the nuclear regulations of the Russian Federation

Method to classify the safety class of Structure, System and Components in a Defueled Condition of Nuclear Power Plant

Energy Technology Data Exchange (ETDEWEB)

Kim, Dong-Hak; Jeon, Dang-Hee [KHNP CRI, Daejeon (Korea, Republic of)

2016-10-15

During pre-decommissioning phase, licensing and engineering work need to change the design basis of the plant such as safety analysis report, downgrade of systems, technical specifications and program and procedures to change of NPP condition from in an operation condition to in a defueled condition. The many systems to need to operate in an operational condition will not be operated during in a defueled condition and the function of systems will be changed from in an operation condition to in a defueled condition. So a downgrade of systems may be needed and reclassifying the safety class of structure, system and component (SSC) may be conducted. By the reclassification of SSC, activity related with quality assurance and maintenance of SSC is affected. In this paper, the method to reclassify SSC in a defueled condition is studied. The many systems to need to operate in an operational condition will not be operated during in a defueled condition and the function of systems will be changed from in an operation condition to in a defueled condition. The operation of NPP during a defueled condition need to conduct licensing and engineering work need to change the design basis of the plant optimize by downgrading systems and reclassifying the safety class of SSC. In this paper, the method to reclassify safety class for a defueled condition is studied.

The verification methodologies for a software modeling of Engineered Safety Features- Component Control System (ESF-CCS)

International Nuclear Information System (INIS)

Lee, Young-Jun; Cheon, Se-Woo; Cha, Kyung-Ho; Park, Gee-Yong; Kwon, Kee-Choon

2007-01-01

The safety of a software is not guaranteed through a simple testing of the software. The testing reviews only the static functions of a software. The behavior, dynamic state of a software is not reviewed by a software testing. The Ariane5 rocket accident and the failure of the Virtual Case File Project are determined by a software fault. Although this software was tested thoroughly, the potential errors existed internally. There are a lot of methods to solve these problems. One of the methods is a formal methodology. It describes the software requirements as a formal specification during a software life cycle and verifies a specified design. This paper suggests the methods which verify the design to be described as a formal specification. We adapt these methods to the software of a ESF-CCS (Engineered Safety Features-Component Control System) and use the SCADE (Safety Critical Application Development Environment) tool for adopting the suggested verification methods

Evaluating Safety Culture Under the Socio-Technical Complex Systems Perspective

International Nuclear Information System (INIS)

Lemos, F. L. de

2016-01-01

Since the term “safety culture” was coined, it has gained more and more attention as an effort to achieve higher levels of system safety. A good deal of effort has been done in order to better define, evaluate and implement safety culture programs in organizations throughout all industries, and especially in the Nuclear Industry. Unfortunately, despite all those efforts, we continue to witness accidents that are, in great part, attributed to flaws in the safety culture of the organization. Fukushima nuclear accident is one example of a serious accident in which flaws in the safety culture has been pointed to as one of the main contributors. In general, the definitions of safety culture emphasise the social aspect of the system. While the definitions also include the relations with the technical aspects, it does so in a general sense. For example, the International Nuclear Safety Advisory Group (INSAG) defines safety culture as: “The assembly of characteristics and attitudes in organizations and individuals which establishes that, as an overriding priority, nuclear plant safety issues receives the attention warranted by their significance.” By the way safety culture is defined we can infer that it represents a property of a social system, or a property of the social aspect of the system. In this sense, the social system is a component of the whole system. Where, “system” is understood to be comprised of a social (humans) and technical (equipment) aspects, as a Nuclear Power Plant, for example. Therefore, treating safety culture as an identity on its own right, finding and fixing flaws in the safety culture may not be enough to improve safety of the system. We also needed to evaluate all the interactions between the components that comprise all the aspects of the system. In some cases a flaw in the safety culture can easily be detected, such as an employee not wearing appropriate individual protection equipment, e.g., dosimeter, or when basic safety

The human component in the safety of complex systems

International Nuclear Information System (INIS)

Wahlstroem, B.

1986-02-01

The safety of nuclear power and other complex processes requires that human actions are carried though on time and without error. Investigations indicate that human errors are the main or an important contributing cause in more than half of the incidents which occur. This makes it important to try understand the mechanisms behind the human errors and to investigate possibilities for decreasing their likelihood. The present report presents an overview of the Nordic cooperation in the field of human factors in nuclear safety, under the LIT-programme carried out 1981-1985. The work was divided into six different projects in the following fields: human reliability in test and maintenance work; safety oriented organizations and company structures; design of information and control systems; new approaches for information presentation; experimental validation of man-machine interfaces; planning and evaluation of operator training. The research topics were selected from the findings of an earlier phase of the Nordic cooperation. The results are described in more detail in separate reports

Development and application of digital safety system in NPPs

International Nuclear Information System (INIS)

Kwon, Keechoon; Kim, Changhwoi; Lee, Dongyoung

2012-01-01

This paper describes the development of digital safety system in NPPs based on safety- grade programmable logic controller (PLC) platform and its application to real NPP construction. The digital safety system consists of a reactor protection system and an engineered safety feature-component control system. The safety-grade PLC platform was developed so that it meets the requirements of the regulation. The PLC consists of various modules such as a power module, a processor module, communication modules, digital input/output modules, analog input/output modules, a LOCA bus extension module, and a high-speed pulse counter module. The reactor protection system is designed with a redundant 4-channel architecture, and every channel is implemented with the same architecture. A single channel consists of a redundant bi-stable processor, a redundant coincidence processor, an automatic test and interface processor, and a cabinet operator module. The engineered safety feature-component control system is designed with four redundant divisions, and implemented with the PLC platform. The principal components of an individual division are fault tolerant group controllers, loop controllers, a test and interface processor, a cabinet operator module and a control channel gateway. The topical report is submitted to the regulatory body, and got safety evaluation report from the regulatory body. Also, the developed system is tested in the integrated performance validation facility. It is decided that the digital safety system applied to Shin-Uljin unit 1 and 2 after a topical report approval and validation test. Design changes occur in the digital safety system that is applied to an actual nuclear power plant construction, and the PLC has also been upgraded

Development and application of digital safety system in NPPs

Energy Technology Data Exchange (ETDEWEB)

Kwon, Keechoon; Kim, Changhwoi; Lee, Dongyoung [Korea Atomic Energy Research Institute, Daejeon (Korea, Republic of)

2012-03-15

This paper describes the development of digital safety system in NPPs based on safety- grade programmable logic controller (PLC) platform and its application to real NPP construction. The digital safety system consists of a reactor protection system and an engineered safety feature-component control system. The safety-grade PLC platform was developed so that it meets the requirements of the regulation. The PLC consists of various modules such as a power module, a processor module, communication modules, digital input/output modules, analog input/output modules, a LOCA bus extension module, and a high-speed pulse counter module. The reactor protection system is designed with a redundant 4-channel architecture, and every channel is implemented with the same architecture. A single channel consists of a redundant bi-stable processor, a redundant coincidence processor, an automatic test and interface processor, and a cabinet operator module. The engineered safety feature-component control system is designed with four redundant divisions, and implemented with the PLC platform. The principal components of an individual division are fault tolerant group controllers, loop controllers, a test and interface processor, a cabinet operator module and a control channel gateway. The topical report is submitted to the regulatory body, and got safety evaluation report from the regulatory body. Also, the developed system is tested in the integrated performance validation facility. It is decided that the digital safety system applied to Shin-Uljin unit 1 and 2 after a topical report approval and validation test. Design changes occur in the digital safety system that is applied to an actual nuclear power plant construction, and the PLC has also been upgraded.

10 CFR 50.69 - Risk-informed categorization and treatment of structures, systems and components for nuclear...

Science.gov (United States)

2010-01-01

..., systems and components for nuclear power reactors. (a) Definitions. Risk-Informed Safety Class (RISC)-1... functions. Risk-Informed Safety Class (RISC)-2 structures, systems and components (SSCs) means nonsafety-related SSCs that perform safety significant functions. Risk-Informed Safety Class (RISC)-3 structures...

Technical self reliance of digital safety systems

Energy Technology Data Exchange (ETDEWEB)

Kwon, Kee Choon; Lee, Dong Young [Korea Atomic Energy Research Institute, Daejeon (Korea, Republic of); Kim, Kook Hun [Doosan Heavy Industries and Construction, Changwon (Korea, Republic of); Choi, Seung Gap [POSCON, Pohang (Korea, Republic of)

2009-04-15

This paper summarizes the development results of the Korea Nuclear Instrumentation and Control System (KNICS) project sponsored by the Korean government. In this project, Man Machine Interface System (MMIS) architecture, two digital platforms, and several control systems are developed. One platform is a programmable Logic Controller (PLC) for a safety system and another platform is a Distributed Control System (DCS) for a non safety system. With the POSAFE Q PLC, a Reactor Protection System (RPS) and an Engineered Safety Feature Component Control System (ESF CCS) are developed. A Power Control System (PCS) is developed based on the DCS. The safety grade platform and the digital safety systems obtained approval for the Topical Report from the Korean regulatory body in February of 2009. Also a Korean utility and a vendor company determined KNICS results to apply them to the planned Nuclear Power Plant (NPP) in March 2009. This paper introduces the technical self reliance experiences of the safety grade platform and the digital safety systems developed in the KNICS R and D project.

Components for containment enclosures. Part 4: Ventilation and gas-cleaning systems such as filters, traps, safety and regulation valves, control and protection devices

International Nuclear Information System (INIS)

2001-01-01

ISO 11933 consists of the following parts, under the general title Components for containment enclosures: Part 1: Glove/bag ports, bungs for glove/bag ports, enclosure rings and interchangeable units; Part 2: Gloves, welded bags, gaiters for remote-handling tongs and for manipulators; Part 3: Transfer systems such as plain doors, airlock chambers, double door transfer systems, leaktight connections for waste drums; Part 4: Ventilation and gas-cleaning systems such as filters, traps, safety and regulation valves, control and protection devices; Part 5: Penetrations for electrical and fluid circuits. This part of ISO 11933 specifies the design criteria and the characteristics of various components used for ventilation and gas-cleaning in containment enclosures. These components are either directly fixed to the containment enclosure wall, or used in the environment of a shielded or unshielded containment enclosure or line of such enclosures. They can be used alone or in conjunction with other mechanical components, including those specified in ISO 11933-1 and ISO 11933-3. This part of ISO 11933 is applicable to: filtering devices, including high-efficiency particulate air (HEPA) filters and iodine traps; safety valves and pressure regulators; systems ensuring the mechanical protection of containment enclosures; control and pressure-measurement devices

Identification of structures, systems, and components important to safety at the potential repository at Yucca Mountain

International Nuclear Information System (INIS)

Hartman, D.J.; Miller, D.D.; Klamerus, L.J.

1991-10-01

This study recommends which structures, systems, and components of the potential repository at Yucca Mountain are important to safety. The assessment was completed in April 1990 and uses the reference repository configuration in the Site Characterization Plan Conceptual Design Report and follows the methodology required at that time by DOE Procedure AP6.10-Q. Failures of repository items during the preclosure period are evaluated to determine the potential offsite radiation doses and associated probabilities. Items are important to safety if, in the event they fail to perform their intended function, an accident could result which causes a dose commitment greater than 0.5 rem to the whole body or any organ of an individual in an unrestricted area. This study recommends that these repository items include the structures that house spent fuel and high-level waste, the associated filtered ventilation exhaust systems, certain waste- handling equipment, the waste containers, the waste treatment building structure, the underground waste transporters, and other items listed in this report. This work was completed April 1990. 27 refs., 7 figs., 9 tabs

Safety-related control air systems - approved 1977

International Nuclear Information System (INIS)

Anon.

1978-01-01

This standard applies to those portions of the control air system that furnish air required to support, control, or operate systems or portions of systems that are safety related in nuclear power plants. This standard relates only to the air supply system(s) for safety-related air operated devices and does not apply to the safety-related air operated device or to air operated actuators for such devices. The objectives of this standard are to provide (1) minimum system design requirements for equipment, piping, instruments, controls, and wiring that constitute the air supply system; and (2) the system and component testing and maintenance requirements

Architecture Level Safety Analyses for Safety-Critical Systems

Directory of Open Access Journals (Sweden)

K. S. Kushal

2017-01-01

Full Text Available The dependency of complex embedded Safety-Critical Systems across Avionics and Aerospace domains on their underlying software and hardware components has gradually increased with progression in time. Such application domain systems are developed based on a complex integrated architecture, which is modular in nature. Engineering practices assured with system safety standards to manage the failure, faulty, and unsafe operational conditions are very much necessary. System safety analyses involve the analysis of complex software architecture of the system, a major aspect in leading to fatal consequences in the behaviour of Safety-Critical Systems, and provide high reliability and dependability factors during their development. In this paper, we propose an architecture fault modeling and the safety analyses approach that will aid in identifying and eliminating the design flaws. The formal foundations of SAE Architecture Analysis & Design Language (AADL augmented with the Error Model Annex (EMV are discussed. The fault propagation, failure behaviour, and the composite behaviour of the design flaws/failures are considered for architecture safety analysis. The illustration of the proposed approach is validated by implementing the Speed Control Unit of Power-Boat Autopilot (PBA system. The Error Model Annex (EMV is guided with the pattern of consideration and inclusion of probable failure scenarios and propagation of fault conditions in the Speed Control Unit of Power-Boat Autopilot (PBA. This helps in validating the system architecture with the detection of the error event in the model and its impact in the operational environment. This also provides an insight of the certification impact that these exceptional conditions pose at various criticality levels and design assurance levels and its implications in verifying and validating the designs.

K West integrated water treatment system subproject safety analysis document

International Nuclear Information System (INIS)

SEMMENS, L.S.

1999-01-01

This Accident Analysis evaluates unmitigated accident scenarios, and identifies Safety Significant and Safety Class structures, systems, and components for the K West Integrated Water Treatment System

K West integrated water treatment system subproject safety analysis document

Energy Technology Data Exchange (ETDEWEB)

SEMMENS, L.S.

1999-02-24

This Accident Analysis evaluates unmitigated accident scenarios, and identifies Safety Significant and Safety Class structures, systems, and components for the K West Integrated Water Treatment System.

DESIGN PACKAGE 1E SYSTEM SAFETY ANALYSIS

Energy Technology Data Exchange (ETDEWEB)

M. Salem

1995-06-23

The purpose of this analysis is to systematically identify and evaluate hazards related to the Yucca Mountain Project Exploratory Studies Facility (ESF) Design Package 1E, Surface Facilities, (for a list of design items included in the package 1E system safety analysis see section 3). This process is an integral part of the systems engineering process; whereby safety is considered during planning, design, testing, and construction. A largely qualitative approach was used since a radiological System Safety Analysis is not required. The risk assessment in this analysis characterizes the accident scenarios associated with the Design Package 1E structures/systems/components(S/S/Cs) in terms of relative risk and includes recommendations for mitigating all identified risks. The priority for recommending and implementing mitigation control features is: (1) Incorporate measures to reduce risks and hazards into the structure/system/component design, (2) add safety devices and capabilities to the designs that reduce risk, (3) provide devices that detect and warn personnel of hazardous conditions, and (4) develop procedures and conduct training to increase worker awareness of potential hazards, on methods to reduce exposure to hazards, and on the actions required to avoid accidents or correct hazardous conditions.

Plutonium Finishing Plant (PFP) HVAC System Component Index; FINAL

International Nuclear Information System (INIS)

DICK, J.D.

1999-01-01

This document identities the components, design media, procedures and defines the critical characteristics of Commercial Grade Items necessary to ensure the HVAC system provides these functions. This document lists safety class (SC) and safety significant (SS) components for the Heating Ventilation Air Conditioning (HVAC) and specifies the critical characteristics for Commercial Grade Items (CGI), as required by HNF-PRO-268 and HNF-PRO-1819. These are the minimum specifications that the equipment must meet in order to properly perform its safety function. There may be several manufacturers or models that meet the critical characteristics for any one item

The safety interlocking system at the NAC

International Nuclear Information System (INIS)

Visser, K.; Mostert, H.

1984-01-01

The central safety interlocking system (CSIS) controls the higher level of interlocking between the various cyclotron subsystems. It ensures the safe operation of the entire cyclotron facility as regards personnel safety and proper instrument operation. The system consists of a micro-processor with a ROM-based safety interlocking program, relay output modules providing ''safety OK'' instructions to all interlocked apparatus, alarm input modules connected to transducers providing binary alarm status signals and an interface to the central control computer. All solid state electronic components of the system are situated in a low level radiation area and are interfaced to cyclotron equipment by means of 24 V relays

A new technology perspective and engineering tools approach for large, complex and distributed mission and safety critical systems components

Science.gov (United States)

Carrio, Miguel A., Jr.

1988-01-01

Rapidly emerging technology and methodologies have out-paced the systems development processes' ability to use them effectively, if at all. At the same time, the tools used to build systems are becoming obsolescent themselves as a consequence of the same technology lag that plagues systems development. The net result is that systems development activities have not been able to take advantage of available technology and have become equally dependent on aging and ineffective computer-aided engineering tools. New methods and tools approaches are essential if the demands of non-stop and Mission and Safety Critical (MASC) components are to be met.

Operation safety of complex industrial systems. Main concepts

International Nuclear Information System (INIS)

Zwingelstein, G.

2009-01-01

Operation safety consists in knowing, evaluating, foreseeing, measuring and mastering the technological system and human failures in order to avoid their impacts on health and people's safety, on productivity, and on the environment, and to preserve the Earth's resources. This article recalls the main concepts of operation safety: 1 - evolutions in the domain; 2 - failures, missions and functions of a system and of its components: functional failure, missions and functions, industrial processes, notions of probability; 3 - basic concepts and operation safety: reliability, unreliability, failure density, failure rate, relations between them, availability, maintainability, safety. (J.S.)

Safety functions and component classification for BWR, PWR and PTR

International Nuclear Information System (INIS)

1979-01-01

The Safety Guide forms part of the IAEA programme, referred to as the NUSS programme (Nuclear Safety Standards), for establishing Codes of Practice and Safety Guides relating to thermal neutron power plants. The present Safety Guide has the following chapters: safety functions, ranking of safety functions, assignment of safety class requirements. Design requirements for structural integrity of boundaries of fluid-retaining components are also discussed

Reliability Prediction Of System And Component Of Process System Of RSG-GAS Reactor

International Nuclear Information System (INIS)

Sitorus Pane, Jupiter

2001-01-01

The older the reactor the higher the probability of the system and components suffer from loss of function or degradation. This phenomenon occurred because of wear, corrosion, and fatigue. Study on component reliability was generally performed deterministically and statistically. This paper would describe an analysis of using statistical method, i.e. regression Cox, in order to predict the reliability of the components and their environmental influence's factors. The result showed that the dynamics, non safety related, and mechanic components have higher risk of failure, whereas static, safety related, and electric have lower risk of failures. The relative risk value for variable of components dynamics, quality, dummy 1 and dummy 2 are of 1.54, 1.59, 1.50, and 0.83 compare to other components type with each variable. Component with the higher risk have lower reliability than lower one

Nuclear Plant Aging Research (NPAR) program plan: Components, systems, and structures

International Nuclear Information System (INIS)

1987-09-01

The nuclear plant aging research described in this plan is intended to resolve issues related to the aging and service wear of equipment and systems and major components at commercial reactor facilities and their possible impact on plant safety. Emphasis has been placed on identification and characterization of the mechanisms of material and component degradation during service and evaluation of methods of inspection, surveillance, condition monitoring, and maintenance as means of mitigating such effects. Specifically, the goals of the program are as follows: (1) to identify and characterize aging and service wear effects which, if unchecked, could cause degradation of equipment, a systems, and major components and thereby impair plant safety; (2) to identify methods of inspection, surveillance, and monitoring, or of evaluating residual life of equipment, systems, and major components, which will ensure timely detection of significant aging effects prior to loss of safety function; and (3) to evaluate the effectiveness of storage, maintenance, repair, and replacement practices in mitigating the rate and extent of degradation caused by aging and service wear

Plutonium finishing plant safety systems and equipment list

International Nuclear Information System (INIS)

Bergquist, G.G.

1995-01-01

The Safety Equipment List (SEL) supports Analysis Report (FSAR), WHC-SD-CP-SAR-021 and the Plutonium Finishing Plant Operational Safety Requirements (OSRs), WHC-SD-CP-OSR-010. The SEL is a breakdown and classification of all Safety Class 1, 2, and 3 equipment, components, or system at the Plutonium Finishing Plant complex

Aging management and PLEX in Swiss nuclear power plants and prioritization of safety class 2 and 3 components

International Nuclear Information System (INIS)

Fuchs, R.; Stejskal, J.

2000-01-01

In this presentation ageing management of systems and components important to safety of the Swiss nuclear power plants are presented. Status of electrical components, status of mechanical components as well as status of civil structures are reviewed. The scheme of the high pressure core spray system is included

Assessment of Integrated Pedestrian Protection Systems with Autonomous Emergency Braking (AEB) and Passive Safety Components.

Science.gov (United States)

Edwards, Mervyn; Nathanson, Andrew; Carroll, Jolyon; Wisch, Marcus; Zander, Oliver; Lubbe, Nils

2015-01-01

Autonomous emergency braking (AEB) systems fitted to cars for pedestrians have been predicted to offer substantial benefit. On this basis, consumer rating programs-for example, the European New Car Assessment Programme (Euro NCAP)-are developing rating schemes to encourage fitment of these systems. One of the questions that needs to be answered to do this fully is how the assessment of the speed reduction offered by the AEB is integrated with the current assessment of the passive safety for mitigation of pedestrian injury. Ideally, this should be done on a benefit-related basis. The objective of this research was to develop a benefit-based methodology for assessment of integrated pedestrian protection systems with AEB and passive safety components. The method should include weighting procedures to ensure that it represents injury patterns from accident data and replicates an independently estimated benefit of AEB. A methodology has been developed to calculate the expected societal cost of pedestrian injuries, assuming that all pedestrians in the target population (i.e., pedestrians impacted by the front of a passenger car) are impacted by the car being assessed, taking into account the impact speed reduction offered by the car's AEB (if fitted) and the passive safety protection offered by the car's frontal structure. For rating purposes, the cost for the assessed car is normalized by comparing it to the cost calculated for a reference car. The speed reductions measured in AEB tests are used to determine the speed at which each pedestrian in the target population will be impacted. Injury probabilities for each impact are then calculated using the results from Euro NCAP pedestrian impactor tests and injury risk curves. These injury probabilities are converted into cost using "harm"-type costs for the body regions tested. These costs are weighted and summed. Weighting factors were determined using accident data from Germany and Great Britain and an independently

The selection of field component reliability data for use in nuclear safety studies

International Nuclear Information System (INIS)

Coxson, B.A.; Tabaie, Mansour

1990-01-01

The paper reviews the user requirements for field component failure data in nuclear safety studies, and the capability of various data sources to satisfy these requirements. Aspects such as estimating the population of items exposed to failure, incompleteness, and under-reporting problems are discussed. The paper takes as an example the selection of component reliability data for use in the Pre-Operational Safety Report (POSR) for Sizewell 'B' Power Station, where field data has in many cases been derived from equipment other than that to be procured and operated on site. The paper concludes that the main quality sought in the available data sources for such studies is the ability to examine failure narratives in component reliability data systems for equipment performing comparable duties to the intended plant application. The main benefit brought about in the last decade is the interactive access to data systems which are adequately structured with regard to the equipment covered, and also provide a text-searching capability of quality-controlled event narratives. (author)

A formal safety analysis for PLC software-based safety critical system using Z

International Nuclear Information System (INIS)

Koh, Jung Soo; Seong, Poong Hyun

1997-01-01

This paper describes a formal safety analysis technique which is demonstrated by performing empirical formal safety analysis with the case study of beamline hutch door Interlock system that is developed by using PLC (Programmable Logic Controller) systems at the Pohang Accelerator Laboratory. In order to perform formed safety analysis, we have built the Z formal specifications representation from user requirement written in ambiguous natural language and target PLC ladder logic, respectively. We have also studied the effective method to express typical PLC timer component by using specific Z formal notation which is supported by temporal history. We present a formal proof technique specifying and verifying that the hazardous states are not introduced into ladder logic in the PLC-based safety critical system

Safety characteristics of options for plasma-facing components for ITER and beyond

International Nuclear Information System (INIS)

Piet, S.J.; McCarthy, K.A.; Holland, D.F.; Longhurst, G.R.; Merrill, B.J.

1991-01-01

Plasma-facing components (PFC) likely dominate the safety hazards of the International Thermonuclear Experimental Reactor (ITER) and post-ITER machines. To gain regulatory approval and for fusion energy to fulfill its ultimate attractive safety and environmental potential, safety must be considered when selecting among PFC options. This paper summarizes current PFC safety information. PFC safety issues fall into seven areas: disruption tolerance, disruption severity, tritium inventory and permeation, accidental energy release, activation/toxin hazards, cooling disturbances, and system issues. RFC options include current ITER mainline options (Be or W coating, C tiles), variants on current ITER options, and liquid metal (LM) divertors. No PFC option that we have examined is free of critical safety concerns. There are also innovative ideas that may improve any PFC's performance -- super-permeable vacuum ducts, helium self-pumping, and gaseous divertors. We conclude with recommendations and a future strategy. 17 refs., 1 fig., 3 tabs

Contribution of NDT to the safety of pressurized components in power stations

International Nuclear Information System (INIS)

Mletzko, U.; Maier, H.J.

1994-01-01

In the eyes on the MPA Stuttgart, the nondestructive testing has a very high weight relating to the safety of pressure components in power stations (concept of basis safety). In this connection, the performance verification by NDT has a special significance. A qualification of NDT-techniques can be, indeed, executed in the initial stage at test bodies with artificial faults, known with respect to position, size and type. Even theoretical (modelling) considerations can be integrated. For a performance verification in a closer sense however, this is not sufficient. The performance verification should be effected for the overall system, composed of hardware, software and examination personnel at components having the scale of 1:1 (Full Scale) under realistic boundary conditions and given times. The components must have natural or quasi-natural faults in a certain quality. The informative value of performance verifications is considerably increased, when executed as authenitic dry runs, and when the fault state is subsequently verified by destructive (metallographical) methods. (orig.) [de

Operation safety of complex industrial systems

International Nuclear Information System (INIS)

Zwingelstein, G.

1999-01-01

Zero fault or zero risk is an unreachable goal in industrial activities like nuclear activities. However, methods and techniques exist to reduce the risks to the lowest possible and acceptable level. The operation safety consists in the recognition, evaluation, prediction, measurement and mastery of technological and human faults. This paper analyses each of these points successively: 1 - evolution of operation safety; 2 - definitions and basic concepts: failure, missions and functions of a system and of its components, basic concepts and operation safety; 3 - forecasting analysis of operation safety: reliability data, data-banks, precautions for the use of experience feedback data; realization of an operation safety study: management of operation safety, quality assurance, critical review and audit of operation safety studies; 6 - conclusions. (J.S.)

Lithium-thionyl chloride cell system safety hazard analysis

Science.gov (United States)

Dampier, F. W.

1985-03-01

This system safety analysis for the lithium thionyl chloride cell is a critical review of the technical literature pertaining to cell safety and draws conclusions and makes recommendations based on this data. The thermodynamics and kinetics of the electrochemical reactions occurring during discharge are discussed with particular attention given to unstable SOCl2 reduction intermediates. Potentially hazardous reactions between the various cell components and discharge products or impurities that could occur during electrical or thermal abuse are described and the most hazardous conditions and reactions identified. Design factors influencing the safety of Li/SOCl2 cells, shipping and disposal methods and the toxicity of Li/SOCl2 battery components are additional safety issues that are also addressed.

Methodology for identifying boundaries of systems important to safety in CANDU nuclear power plants

International Nuclear Information System (INIS)

Therrien, S.; Komljenovic, D.; Therrien, P.; Ruest, C.; Prevost, P.; Vaillancourt, R.

2007-01-01

This paper presents a methodology developed to identify the boundaries of the systems important to safety (SIS) at the Gentilly-2 Nuclear Power Plant (NPP), Hydro-Quebec. The SIS boundaries identification considers nuclear safety only. Components that are not identified as important to safety are systematically identified as related to safety. A global assessment process such as WANO/INPO AP-913 'Equipment Reliability Process' will be needed to implement adequate changes in the management rules of those components. The paper depicts results in applying the methodology to the Shutdown Systems 1 and 2 (SDS 1, 2), and to the Emergency Core Cooling System (ECCS). This validation process enabled fine tuning the methodology, performing a better estimate of the effort required to evaluate a system, and identifying components important to safety of these systems. (author)

Research on advanced system safety assessment procedures (II)

International Nuclear Information System (INIS)

Suzuki, Kazuhiko; Shimada, Yukiyasu

1999-03-01

HAZOP (Hazard and operability study) is a systematic technique, which requires the involvement of an experienced, interdisciplinary team of engineers, to identify hazards or operability problems throughout an entire facility by brainstorming. Though HAZOP is recognized as the useful safety assessment method, it requires a labor-intensive and time-consuming process. So recently computer-aided HAZOP has been proposed. The research report in 1998 (PNC PJ1612 98-001) presented prototype system, which carries out HAZOP and FT synthesis, by making use of proposed method. Relationships between states of input and output variables, internal and external events of each component are represented using decision tables, and the system is implemented by C++. In this study, the causalities of plant component malfunctions are described as component malfunction basic model and are stored in the computer. Thus, we have developed safety evaluation support system by considering the fault propagation path. Component malfunction basic model is made based on the information on the causalities between the abnormal state and each malfunction in components. This component malfunction basic model provides the common frame to describe abnormal situation in components. By using this basic model, not only state malfunction of component but also the consequence to external circumstance is assessed. G2, which is an excellent object-oriented developer tool in GUI (Graphical User Interface), is used as a tool for developing the system. By using the graphical editor in the system, the user can carry out HAZOP easily. We have applied this system to the Nuclear Reprocessing Facilities to demonstrate the utilities of developing system. (author)

Survey and evaluation of inherent safety characteristics and passive safety systems for use in probabilistic safety analyses

International Nuclear Information System (INIS)

Wetzel, N.; Scharfe, A.

1998-01-01

The present report examines the possibilities and limits of a probabilistic safety analysis to evaluate passive safety systems and inherent safety characteristics. The inherent safety characteristics are based on physical principles, that together with the safety system lead to no damage. A probabilistic evaluation of the inherent safety characteristic is not made. An inventory of passive safety systems of accomplished nuclear power plant types in the Federal Republic of Germany was drawn up. The evaluation of the passive safety system in the analysis of the accomplished nuclear power plant types was examined. The analysis showed that the passive manner of working was always assumed to be successful. A probabilistic evaluation was not performed. The unavailability of the passive safety system was determined by the failure of active components which are necessary in order to activate the passive safety system. To evaluate the passive safety features in new concepts of nuclear power plants the AP600 from Westinghouse, the SBWR from General Electric and the SWR 600 from Siemens, were selected. Under these three reactor concepts, the SWR 600 is specially attractive because the safety features need no energy sources and instrumentation in this concept. First approaches for the assessment of the reliability of passively operating systems are summarized. Generally it can be established that the core melt frequency for the passive concepts AP600 and SBWR is advantageous in comparison to the probabilistic objectives from the European Pressurized Water Reactor (EPR). Under the passive concepts is the SWR 600 particularly interesting. In this concept the passive systems need no energy sources and instrumentation, and has active operational systems and active safety equipment. Siemens argues that with this concept the frequency of a core melt will be two orders of magnitude lower than for the conventional reactors. (orig.) [de

Quality Control Activities Related to Mechanical Maintenance of Safety Related Components at Krsko NPP

International Nuclear Information System (INIS)

Djakovic, D.

2016-01-01

For successful, safe and reliable operation of nuclear power plant, maintenance processes have to be systematically controlled and procedures for quality control of maintenance activities shall be established. This is requested by the quality assurance program, which shall provide control over activities affecting the quality of structures, systems, and components, considering their importance to safety. As a part of Quality and Nuclear Oversight Division (QNOD; SKV), the Quality Control Department (QC) provides quality control activities, which are deeply involved in maintenance processes at Krsko NPP, both on safety related and non-safety related (non-nuclear safety) components. QC activities on safety related components have to fulfil all requirements, which will enable the components to perform their intended safety functions. This paper describes quality control activities related to mechanical maintenance of safety related components at Krsko NPP and significant role of the Krsko plant QC Department in three particular maintenance cases connected with safety related components. In these three specific cases, the QC has confirmed its importance in compliance with quality assurance program and presented its significant added value in providing safe and reliable operation of the plant. The first maintenance activity was installation of nozzle check valves in the scope of a modification for improving regulation of spent fuel pit pumps. The QC Department performed receipt inspection of the valves. Using non-destructive examination methods and X-ray spectrometry, it was found out that the valve diffuser was made of improper material, which could cause progressive corrosion of the valve diffuser in borated water and consequently a loss of safety function of the valves followed by long-term consequences. The second one was the receipt inspection of containment ventilation fan coolers. The coolers were claimed and sent back to the supplier because the QC Department

Security for safety critical space borne systems

Science.gov (United States)

Legrand, Sue

1987-01-01

The Space Station contains safety critical computer software components in systems that can affect life and vital property. These components require a multilevel secure system that provides dynamic access control of the data and processes involved. A study is under way to define requirements for a security model providing access control through level B3 of the Orange Book. The model will be prototyped at NASA-Johnson Space Center.

Probabilistic approaches to LCO's and surveillance requirements for standby safety systems

International Nuclear Information System (INIS)

Lofgren, E.V.; Varcolik, F.

1982-11-01

Results are presented for a comprehensive analysis of risk-based methods for establishing Limiting Conditions for Operation (LCO) and surveillance requirements for on-line test and repair of nuclear power plant safety system components. Limiting Conditions for Operation refers to the legal constraint on safety system component outage times that are imposed by the NRC as part of the reactor operating license. Generally, when a safety system component is removed for repair or test for a period of time there is a period of increased vulnerability concerning the probability that the affected safety system will be available to mitigate an accident. This period of increased vulnerability exists until the component is restored to service. The constraint on the duration of this period, the allowed outage time (AOT), is the aspect of LCOs that is of interest here. In particular, methods are reviewed and developed that relate measures of risk to the AOT. Only by explicitly relating risk to AOT can outage times be constrained by placing limits on risk. Methods developed for relating risk measures to outage times are presented. The review and analysis of risk related methods for establishing LCOs are described

Testing Challenges of Maritime Safety and Security Systems-of-Systems

NARCIS (Netherlands)

Gonzalez, A.; Piel, E.; Gross, H.G.

2008-01-01

Preprint of paper published in: TAIC PART 2008: Testing: Academic & Industrial Conference, Practice and Research Techniques, 29-31 August 2008; doi:10.1109/TAIC-PART.2008.14 Maritime Safety and Security systems represent a novel kind of large-scale distributed component-based systems in which the

On the classification of structures, systems and components of nuclear research and test reactors

International Nuclear Information System (INIS)

Mattar Neto, Miguel

2009-01-01

The classification of structures, systems and components of nuclear reactors is a relevant issue related to their design because it is directly associated with their safety functions. There is an important statement regarding quality standards and records that says Structures, systems, and components important to safety shall be designed, fabricated, erected, and tested to quality standards commensurate with the importance of the safety functions to be performed. The definition of the codes, standards and technical requirements applied to the nuclear reactor design, fabrication, inspection and tests may be seen as the main result from this statement. There are well established guides to classify structures, systems and components for nuclear power reactors such as the Pressurized Water Reactors but one can not say the same for nuclear research and test reactors. The nuclear reactors safety functions are those required to the safe reactor operation, the safe reactor shutdown and continued safe conditions, the response to anticipated transients, the response to potential accidents and the control of radioactive material. So, it is proposed in this paper an approach to develop the classification of structures, systems and components of these reactors based on their intended safety functions in order to define the applicable set of codes, standards and technical requirements. (author)

Safety systems I/C equipment reliability analyses of the Kozloduy NPP units 3 and 4

Energy Technology Data Exchange (ETDEWEB)

Halev, G; Christov, N [Risk Engineering Ltd., Sofia (Bulgaria)

1996-12-31

The purpose of the analysis is to assess the safety systems I/C equipment reliability. The assessment includes: quantification of the safety systems unavailability due to component failures; definition of the minimal cut sets leading to the analysed safety systems failure; quantification of the I/C equipment importance measures of the dominant contribution components. The safety systems I/C equipment reliability has been analysed using PSAPACK (a code for probabilistic safety assessment). Fault trees for the following safety systems of the Kozloduy-3 and Kozloduy-4 reactors have been constructed: neutron flow control equipment, reactor protection system, main coolant pumps, pressurizer safety valves `Sempell`, steam dump systems, spray system, low pressure injection system, emergency feeding water system, essential service water system. THree separate reports have been issued containing the performed analyses and results. 1 ref.

23. MPA-Seminar: Safety and reliability of plant technology with special emphasis on behaviour of pressurized components and systems at increased loading. Vol. 2. Papers 27-50

International Nuclear Information System (INIS)

1998-01-01

This book is dedicated to the components of nuclear and conventional power plants with special emphasis on the behaviour of pressurized components and systems. The following topics are discussed: 1. structure and safety analysis, 2. aging phenomena, 3. nondestructive testing, and 4. optimization of in-service inspection

Component aging evaluation with expert systems

International Nuclear Information System (INIS)

Wiesemann, J.S.; Maguire, H.T. Jr.

1988-01-01

The age degradation of components involves a complex relationship between a variety of variables. These relationships are typically modeled using probabilistic and deterministic analyses. These methods depend upon a formal understanding of the underlying degradation mechanisms and a database of experience which allows statistical analyses to extract numerical trends. At present, not all age degradation mechanisms are adequately modeled and available data for age degradation is in most cases insufficient. In addition, these methods tend to focus upon answers to isolated questions (e.g., What is the component failure rate?) rather than the more pertinent questions concerning operations and maintenance (e.g., should the component be replaced at the next outage). Fortunately, knowledge in the form of personal experience does exist which allows plant personnel to make decisions concerning operations and maintenance. This knowledge can be modeled using expert systems. This paper discusses CAGES (Component Aging Expert System). It combines expert rules (heuristics), probabilistic models, and deterministic models to make evaluations of component aging; predict the implications for component life extension, operational readiness, maintenance effectiveness, and safety, and make recommendations for maintenance and operation

The reliability of nuclear power plant safety systems

International Nuclear Information System (INIS)

Susnik, J.

1978-01-01

A criterion was established concerning the protection that nuclear power plant (NPP) safety systems should afford. An estimate of the necessary or adequate reliability of the total complex of safety systems was derived. The acceptable unreliability of auxiliary safety systems is given, provided the reliability built into the specific NPP safety systems (ECCS, Containment) is to be fully utilized. A criterion for the acceptable unreliability of safety (sub)systems which occur in minimum cut sets having three or more components of the analysed fault tree was proposed. A set of input MTBF or MTTF values which fulfil all the set criteria and attain the appropriate overall reliability was derived. The sensitivity of results to input reliability data values was estimated. Numerical reliability evaluations were evaluated by the programs POTI, KOMBI and particularly URSULA, the last being based on Vesely's kinetic fault tree theory. (author)

Nuclear power plants. Electrical equipment of the safety system. Qualification

International Nuclear Information System (INIS)

2001-01-01

This International Standard applies to electrical parts of safety systems employed at nuclear power plants, including components and equipment of any interface whose failure could affect unfavourably properties of the safety system. The standard also applies to non-electrical safety-related interfaces. Furthermore, the standard describes the generic process of qualification certification procedures and methods of qualification testing and related documentation. (P.A.)

Analysis of Aviation Safety Reporting System Incident Data Associated with the Technical Challenges of the System-Wide Safety and Assurance Technologies Project

Science.gov (United States)

Withrow, Colleen A.; Reveley, Mary S.

2015-01-01

The Aviation Safety Program (AvSP) System-Wide Safety and Assurance Technologies (SSAT) Project asked the AvSP Systems and Portfolio Analysis Team to identify SSAT-related trends. SSAT had four technical challenges: advance safety assurance to enable deployment of NextGen systems; automated discovery of precursors to aviation safety incidents; increasing safety of human-automation interaction by incorporating human performance, and prognostic algorithm design for safety assurance. This report reviews incident data from the NASA Aviation Safety Reporting System (ASRS) for system-component-failure- or-malfunction- (SCFM-) related and human-factor-related incidents for commercial or cargo air carriers (Part 121), commuter airlines (Part 135), and general aviation (Part 91). The data was analyzed by Federal Aviation Regulations (FAR) part, phase of flight, SCFM category, human factor category, and a variety of anomalies and results. There were 38 894 SCFM-related incidents and 83 478 human-factorrelated incidents analyzed between January 1993 and April 2011.

Design, construction, qualification and reliability of main components, from the safety aspect

International Nuclear Information System (INIS)

Crette, J.P.

1982-01-01

In FRANCE, the design and construction of reliable components, which condition the safe operation and availability of breeder plants, is based on the experience acquired during the operation of RAPSODIE, PHENIX and the various test facilities. The technical progress achieved on all main components is illustrated by examples taken from the CREYS-MALVILLE plant. In parallel with the development of these components, an extensive program covering research, development and the definition of design, construction and inspection rules, together with scheduling and quality assurance methods, prepares the industrialization of this reactor system, in compliance with the rules and recommendations issued by the pertinent safety authorities

Components selection for ageing management

International Nuclear Information System (INIS)

Mingiuc, C.; Vidican, D.

2002-01-01

Full text: The paper presents a synthesis of methods and activities realized for the selection of critical components to assure plant safety and availability (as electricity supplier). There are presented main criteria for selection, screening process. For the resulted categories of components shall be applied different category of maintenance (condition oriented, scheduled or corrective), function of the importance and financial effort necessary to fulfil the task. 1. Systems and components screening for plant safety assurance For the systems selection, from Safety point of view, was necessary first, to define systems which are dangerous in case of failure (mainly by rupture/ release of radioactivity) and the safety systems which have to mitigate the effects. This is realized based on accident analysis (from Safety Report). Also where taken in to account the 4 basic Safety Principles: 'Reactor shut down; Residual heat removal; Radioactivity products confinement; NPP status monitoring in normal and accident conditions'. Following step is to establish safety support systems, which have to action to assure main safety systems operation. This could be realized based on engineering judgement, or on PSA Level I analysis. Finally shall be realized chains of the support systems, which have to work, till primary systems. For the critical components selection, was realized a Failure Mode and Effect Analysis (FMEA), considering the components effects of failures, on system safety function. 2. Systems and components screening for plant availability assurance The work was realized in two steps: Systems screening; Components screening The systems screening, included: General, analyze of the plant systems list and the definition of those which clearly have to run continue to assure the nominal power; Realization of a complex diagram to define interdependence between the systems (e.g. PHT and auxiliaries, moderator and auxiliaries, plant electrical diagram); Fill of special

Safety analysis of water cooled components inside the JET thermonuclear fusion tokamak

International Nuclear Information System (INIS)

Ageladarakis, P.; O'Dowd, N.; Papastergiou, S.

1998-04-01

The transient thermal behaviour of a number of components, installed in the vessel of the world's largest Fusion Tokamak (JET) has been examined with a theoretical model, which simulated normal operational conditions and abnormal scenarios namely: Loss of Coolant Flow; Loss of Torus Vacuum; and combinations. A number of theoretical results related to water and cryogenically cooled devices have been validated by a comprehensive experimental campaign conducted both inside the JET plasma chamber and in a test rig. The performance of water cooled components which may be subjected to boiling or freeze-up risks in case of a Loss of Water Flow event has also been analysed. Time constants of transient temperature changes were determined by the model while protective actions were prescribed in order to safeguard the equipment against associated risks. A completely automatic safety protection system has been designed on the basis of these analyses and implemented in the routine JET operation. During operation of JET the safety code reacted several times within the specified time limits and protected the relevant components during real off-normal events. (author)

Proposed and existing passive and inherent safety-related structures, systems, and components (building blocks) for advanced light-water reactors

International Nuclear Information System (INIS)

Forsberg, C.W.; Moses, D.L.; Lewis, E.B.; Gibson, R.; Pearson, R.; Reich, W.J.; Murphy, G.A.; Staunton, R.H.; Kohn, W.E.

1989-10-01

A nuclear power plant is composed of many structures, systems, and components (SSCs). Examples include emergency core cooling systems, feedwater systems, and electrical systems. The design of a reactor consists of combining various SSCs (building blocks) into an integrated plant design. A new reactor design is the result of combining old SSCs in new ways or use of new SSCs. This report identifies, describes, and characterizes SSCs with passive and inherent features that can be used to assure safety in light-water reactors. Existing, proposed, and speculative technologies are described. The following approaches were used to identify the technologies: world technical literature searches, world patent searches, and discussions with universities, national laboratories and industrial vendors. 214 refs., 105 figs., 26 tabs

Proposed and existing passive and inherent safety-related structures, systems, and components (building blocks) for advanced light-water reactors

Energy Technology Data Exchange (ETDEWEB)

Forsberg, C.W.; Moses, D.L.; Lewis, E.B.; Gibson, R.; Pearson, R.; Reich, W.J.; Murphy, G.A.; Staunton, R.H.; Kohn, W.E.

1989-10-01

A nuclear power plant is composed of many structures, systems, and components (SSCs). Examples include emergency core cooling systems, feedwater systems, and electrical systems. The design of a reactor consists of combining various SSCs (building blocks) into an integrated plant design. A new reactor design is the result of combining old SSCs in new ways or use of new SSCs. This report identifies, describes, and characterizes SSCs with passive and inherent features that can be used to assure safety in light-water reactors. Existing, proposed, and speculative technologies are described. The following approaches were used to identify the technologies: world technical literature searches, world patent searches, and discussions with universities, national laboratories and industrial vendors. 214 refs., 105 figs., 26 tabs.

Probabilistic calibration of safety coefficients for flawed components in nuclear engineering

International Nuclear Information System (INIS)

Ardillon, E.; Pitner, P.; Barthelet, B.; Remond, A.

1996-01-01

The rules that are currently under application to verify the acceptance of flaws in nuclear components rely on deterministic criteria supposed to ensure the safe operating of plants. The interest of having a precise and reliable method to evaluate the safety margins and the integrity of components led Electricite de France to launch an approach to link directly safety coefficients with safety levels. This paper presents a probabilistic methodology to calibrate safety coefficients in relation to reliability target values. The proposed calibration procedure applies to the case of a ferritic flawed pipe using the R6 procedure for assessing the integrity of the structure. (authors). 5 refs., 5 figs

Probabilistic calibration of safety coefficients for flawed components in nuclear engineering

International Nuclear Information System (INIS)

Ardillon, E.; Pitner, P.; Barthelet, B.; Remond, A.

1995-01-01

The current rules applied to verify the flaws acceptance in nuclear components rely on deterministic criteria supposed to ensure the plant safe operation. The interest in have a precise and reliable method to evaluate the safety margins and the integrity of components led Electricite de France to launch an approach to link directly safety coefficients with safety levels. This paper presents a probabilistic methodology to calibrate safety coefficients in relation do reliability target values. The proposed calibration procedure applies to the case of a ferritic flawed pipe using the R 6 procedure for assessing the structure integrity. (author). 5 refs., 5 figs., 1 tab

System theory and safety models in Swedish, UK, Dutch and Australian road safety strategies.

Science.gov (United States)

Hughes, B P; Anund, A; Falkmer, T

2015-01-01

Road safety strategies represent interventions on a complex social technical system level. An understanding of a theoretical basis and description is required for strategies to be structured and developed. Road safety strategies are described as systems, but have not been related to the theory, principles and basis by which systems have been developed and analysed. Recently, road safety strategies, which have been employed for many years in different countries, have moved to a 'vision zero', or 'safe system' style. The aim of this study was to analyse the successful Swedish, United Kingdom and Dutch road safety strategies against the older, and newer, Australian road safety strategies, with respect to their foundations in system theory and safety models. Analysis of the strategies against these foundations could indicate potential improvements. The content of four modern cases of road safety strategy was compared against each other, reviewed against scientific systems theory and reviewed against types of safety model. The strategies contained substantial similarities, but were different in terms of fundamental constructs and principles, with limited theoretical basis. The results indicate that the modern strategies do not include essential aspects of systems theory that describe relationships and interdependencies between key components. The description of these strategies as systems is therefore not well founded and deserves further development. Copyright © 2014 Elsevier Ltd. All rights reserved.

Failure trend analysis for safety related components of Korean standard NPPs

International Nuclear Information System (INIS)

Choi, Sun Yeong; Han, Sang Hoon

2005-01-01

The component reliability data of Korean NPP that reflects the plant specific characteristics is required necessarily for PSA of Korean nuclear power plants. We have performed a project to develop the component reliability database (KIND, Korea Integrated Nuclear Reliability Database) and S/W for database management and component reliability analysis. Based on the system, we have collected the component operation data and failure/repair data during from plant operation date to 2002 for YGN 3, 4 and UCN 3, 4 plants. Recently, we provided the component failure rate data for UCN 3, 4 standard PSA model from the KIND. We evaluated the components that have high-ranking failure rates with the component reliability data from plant operation date to 1998 and 2000 for YGN 3,4 and UCN 3, 4 respectively. We also identified their failure mode that occurred frequently. In this study, we analyze the component failure trend and perform site comparison based on the generic data by using the component reliability data which is extended to 2002 for UCN 3, 4 and YGN 3, 4 respectively. We focus on the major safety related rotating components such as pump, EDG etc

A formal safety analysis for PLC software-based safety critical system using Z

International Nuclear Information System (INIS)

Koh, Jung Soo

1997-02-01

This paper describes a formal safety analysis technique which is demonstrated by performing empirical formal safety analysis with the case study of beamline hutch door Interlock system that is developed by using PLC (Programmable Logic Controller) systems at the Pohang Accelerator Laboratory. In order to perform formal safety analysis, we have built the Z formal specifications representation from user requirement written in ambiguous natural language and target PLC ladder logic, respectively. We have also studied the effective method to express typical PLC timer component by using specific Z formal notation which is supported by temporal history. We present a formal proof technique specifying and verifying that the hazardous states are not introduced into ladder logic in the PLC-based safety critical system. And also, we have found that some errors or mismatches in user requirement and final implemented PLC ladder logic while analyzing the process of the consistency and completeness of Z translated formal specifications. In the case of relatively small systems like Beamline hutch door interlock system, a formal safety analysis including explicit proof is highly recommended so that the safety of PLC-based critical system may be enhanced and guaranteed. It also provides a helpful benefits enough to comprehend user requirement expressed by ambiguous natural language

Instrumentation and control systems important to safety in nuclear power plants. Safety guide

International Nuclear Information System (INIS)

2005-01-01

This Safety Guide was prepared under the IAEA programme for establishing safety standards for nuclear power plants. It supplements Safety Standards Series No. NS-R-1: Safety of Nuclear Power Plants: Design (the Requirements for Design), which establishes the design requirements for ensuring the safety of nuclear power plants. This Safety Guide describes how the requirements should be met for instrumentation and control (I and C) systems important to safety. This publication is a revision and combination of two previous Safety Guides: Safety Series Nos 50-SG-D3 and 50-SG-D8, which are superseded by this new Safety Guide. The revision takes account of developments in I and C systems important to safety since the earlier Safety Guides were published in 1980 and 1984, respectively. The objective of this Safety Guide is to provide guidance on the design of I and C systems important to safety in nuclear power plants, including all I and C components, from the sensors allocated to the mechanical systems to the actuated equipment, operator interfaces and auxiliary equipment. This Safety Guide deals mainly with design requirements for those I and C systems that are important to safety. It expands on paragraphs of Ref in the area of I and C systems important to safety. This publication is intended for use primarily by designers of nuclear power plants and also by owners and/or operators and regulators of nuclear power plants. This Safety Guide provides general guidance on I and C systems important to safety which is broadly applicable to many nuclear power plants. More detailed requirements and limitations for safe operation specific to a particular plant type should be established as part of the design process. The present guidance is focused on the design principles for systems important to safety that warrant particular attention, and should be applied to both the design of new I and C systems and the modernization of existing systems. Guidance is provided on how design

Risk assessment of safety data link and network communication in digital safety feature control system of nuclear power plant

International Nuclear Information System (INIS)

Lee, Sang Hun; Son, Kwang Seop; Jung, Wondea; Kang, Hyun Gook

2017-01-01

Highlights: • Safety data communication risk assessment framework and quantitative scheme were proposed. • Fault-tree model of ESFAS unavailability due to safety data communication failure was developed. • Safety data link and network risk were assessed based on various ESF-CCS design specifications. • The effect of fault-tolerant algorithm reliability of safety data network on ESFAS unavailability was assessed. - Abstract: As one of the safety-critical systems in nuclear power plants (NPPs), the Engineered Safety Feature-Component Control System (ESF-CCS) employs safety data link and network communication for the transmission of safety component actuation signals from the group controllers to loop controllers to effectively accommodate various safety-critical field controllers. Since data communication failure risk in the ESF-CCS has yet to be fully quantified, the ESF-CCS employing data communication systems have not been applied in NPPs. This study therefore developed a fault tree model to assess the data link and data network failure-induced unavailability of a system function used to generate an automated control signal for accident mitigation equipment. The current aim is to provide risk information regarding data communication failure in a digital safety feature control system in consideration of interconnection between controllers and the fault-tolerant algorithm implemented in the target system. Based on the developed fault tree model, case studies were performed to quantitatively assess the unavailability of ESF-CCS signal generation due to data link and network failure and its risk effect on safety signal generation failure. This study is expected to provide insight into the risk assessment of safety-critical data communication in a digitalized NPP instrumentation and control system.

Ecological Safety Evaluation of Land Use in Ji’an City Based on the Principal Component Analysis

Institute of Scientific and Technical Information of China (English)

2010-01-01

According to the ecological safety evaluation index data of land-use change in Ji’an City from 1999 to 2008,positive treatment on selected reverse indices is conducted by Reciprocal Method.Meanwhile,Index Method is used to standardize the selected indices,and Principal Component Analysis is applied by using year as a unit.FB is obtained,which is related with the ecological safety of land-use change from 1999 to 2008.According to the scientific,integrative,hierarchical,practical and dynamic principles,ecological safety evaluation index system of land-use change in Ji’an City is established.Principal Component Analysis and evaluation model are used to calculate four parameters,including the natural resources safety index of land use,the socio-economic safety indicators of land use,the eco-environmental safety index of land use,and the ecological safety degree of land use in Ji’an City.Result indicates that the ecological safety degree of land use in Ji’an City shows a slow upward trend as a whole.At the same time,ecological safety degree of land-use change is relatively low in Ji’an City with the safety value of 0.645,which is at a weak safety zone and needs further monitoring and maintenance.

Treatment of Passive Component Reliability in Risk-Informed Safety Margin Characterization FY 2010 Report

Energy Technology Data Exchange (ETDEWEB)

Robert W Youngblood

2010-09-01

The Risk-Informed Safety Margin Characterization (RISMC) pathway is a set of activities defined under the U.S. Department of Energy (DOE) Light Water Reactor Sustainability Program. The overarching objective of RISMC is to support plant life-extension decision-making by providing a state-of-knowledge characterization of safety margins in key systems, structures, and components (SSCs). A technical challenge at the core of this effort is to establish the conceptual and technical feasibility of analyzing safety margin in a risk-informed way, which, unlike conventionally defined deterministic margin analysis, is founded on probabilistic characterizations of SSC performance.

Failure modes of safety-related components at fires on nuclear power plants

International Nuclear Information System (INIS)

Aaslund, A.

2000-03-01

Probabilistic assessment methods can be used to identify specific plant vulnerabilities. Application of such methods can also facilitate selection among system design alternatives available for safety enhancements. The quality of assessment results is however strongly dependent on realistic and accurate input data for modelling of system component behaviour and failure modes during conditions to be assessed. Use of conservative input data may not lead to results providing guidance on safety upgrades. Adequate input data for probabilistic assessments seems to be lacking for at least failure modes of some electrical components when exposed to a fire. This report presents an attempt to improve the situation with respect to such input data. In order to take advantage of information in existing documentation of fire incident occurrences some of the lessons learned from the fire at Browns Ferry Nuclear Power Plant on March 22, 1975 are discussed in this report. Also a summary of results from different fire tests of electrical cables presented in a fire risk analysis report is a part of the references. The failure modes used to describe fire-induced damage are 'open circuit' and 'hot short' which seems to be commonly accepted terms within the branch. Definitions of the terms are included in the report. Effects of the failure modes when occurring in some of the channels of the reactor protection system are discussed with respect to the existing design of the reactor protection system at Ringhals 2 nuclear power unit. Experiences from the Browns Ferry fire and results from fire tests of electrical cables indicate that the dominating failure mode for electrical cables is 'open circuit'. An 'open circuit' failure leads to circuit disjunction and loss of continuity. The circuit can no longer transmit its signal or power. When affecting channels of the reactor protection system an 'open circuit' failure can cause extensive inadvertent actions of safety related equipment

Integrated model of port oil piping transportation system safety including operating environment threats

Directory of Open Access Journals (Sweden)

Kołowrocki Krzysztof

2017-06-01

Full Text Available The paper presents an integrated general model of complex technical system, linking its multistate safety model and the model of its operation process including operating environment threats and considering variable at different operation states its safety structures and its components safety parameters. Under the assumption that the system has exponential safety function, the safety characteristics of the port oil piping transportation system are determined.

Integrated model of port oil piping transportation system safety including operating environment threats

OpenAIRE

Kołowrocki, Krzysztof; Kuligowska, Ewa; Soszyńska-Budny, Joanna

2017-01-01

The paper presents an integrated general model of complex technical system, linking its multistate safety model and the model of its operation process including operating environment threats and considering variable at different operation states its safety structures and its components safety parameters. Under the assumption that the system has exponential safety function, the safety characteristics of the port oil piping transportation system are determined.

Exploring agricultural production systems and their fundamental components with system dynamics modeling

Science.gov (United States)

Agricultural production in the United States is undergoing marked changes due to rapid shifts in consumer demands, input costs, and concerns for food safety and environmental impact. Agricultural production systems are comprised of multidimensional components and drivers that interact in complex wa...

A Hybrid Hardware and Software Component Architecture for Embedded System Design

Science.gov (United States)

Marcondes, Hugo; Fröhlich, Antônio Augusto

Embedded systems are increasing in complexity, while several metrics such as time-to-market, reliability, safety and performance should be considered during the design of such systems. A component-based design which enables the migration of its components between hardware and software can cope to achieve such metrics. To enable that, we define hybrid hardware and software components as a development artifact that can be deployed by different combinations of hardware and software elements. In this paper, we present an architecture for developing such components in order to construct a repository of components that can migrate between the hardware and software domains to meet the design system requirements.

The safety related aspects of pressure components in nuclear power plants

International Nuclear Information System (INIS)

Lindackers, K.H.

1979-01-01

Over the last two years the safety philosophy for nuclear power plants in the Federal Republic of Germany has changed considerably, as everyone working in the field perceives. The original and appropriate philosophy of risk minimalisation through graduated safety barriers has been more and more replaced by the utopian goal of total prevention of any damage. The reasons for this development are discussed briefly especially regarding pressure components. The very numerous pressure components of a nuclear power station are not all of equal importance with respect to safety. Although considerable efforts have been made, it has not been possible, to date, to achieve an agreement between operators, manufacturers, licensing authorities, independent experts, and other specialists about the safety related classification of the manifold pressure bearing parts in nuclear power stations. The background of this extremely regrettable situation is explained. In the last part of the paper the author suggests a simple and clear safety philosophy for pressure components in nuclear power stations. This philosophy is orientated both on Safety Regulations of the Radiation Protection Decree ('Strahlenschutzverordnung') of the 13th October 1976 and on the Safety Criteria for Nuclear Power Stations from 21st October 1977. Only a simple, clear framework can make a contribution to the further improvement of the already exceptional safety of nuclear facilities and to the removal of obstacles in the licensing procedure which, taken as a whole, tie up skilled personnel to a senseless degree, involve considerable financial expenditure, and have no relevance for the safety of nuclear power plants. (orig.) [de

Assessment and management of ageing of major nuclear power plant components important to safety. Primary piping in PWRs

International Nuclear Information System (INIS)

2003-07-01

guidance reports are directed at technical experts from NPPs and from regulatory, plant design, manufacturing and technical support organizations dealing with specific plant components addressed in the reports. This report addresses the primary piping in PWRs including main coolant piping, surge and spray lines, Class 1 piping in attached systems, and small diameter piping that cannot be isolated from the primary coolant system. Maintaining the structural integrity of this piping throughout NPP service life in spite of several ageing mechanisms is essential for plant safety

Understanding Nuclear Safety Culture: A Systemic Approach

International Nuclear Information System (INIS)

Afghan, A.N.

2016-01-01

The Fukushima accident was a systemic failure (Report by Director General IAEA on the Fukushima Daiichi Accident). Systemic failure is a failure at system level unlike the currently understood notion which regards it as the failure of component and equipment. Systemic failures are due to the interdependence, complexity and unpredictability within systems and that is why these systems are called complex adaptive systems (CAS), in which “attractors” play an important role. If we want to understand the systemic failures we need to understand CAS and the role of these attractors. The intent of this paper is to identify some typical attractors (including stakeholders) and their role within complex adaptive system. Attractors can be stakeholders, individuals, processes, rules and regulations, SOPs etc., towards which other agents and individuals are attracted. This paper will try to identify attractors in nuclear safety culture and influence of their assumptions on safety culture behavior by taking examples from nuclear industry in Pakistan. For example, if the nuclear regulator is an attractor within nuclear safety culture CAS then how basic assumptions of nuclear plant operators and shift in-charges about “regulator” affect their own safety behavior?

Structural evaluation of safety class components to natural phenomena loadings

International Nuclear Information System (INIS)

Conrads, T.J.

1989-01-01

This paper addresses the efforts completed at the US Department of Energy Hanford Site near Richland, Washington, to qualify structurally a number of existing safety class components in the Plutonium Finishing Plant complex. Design, fabrication, and installation of the facility occurred in the 1950s and 1960s and were based on the Uniform Building Code criteria for wind and earthquake loads. Recently the buildings were qualified to site-specific wind and seismic hazards. The methodology employed to qualify seismically the safety class components is discussed

Impact of Passive Safety on FHR Instrumentation Systems Design and Classification

International Nuclear Information System (INIS)

Holcomb, David Eugene

2015-01-01

Fluoride salt-cooled high-temperature reactors (FHRs) will rely more extensively on passive safety than earlier reactor classes. 10CFR50 Appendix A, General Design Criteria for Nuclear Power Plants, establishes minimum design requirements to provide reasonable assurance of adequate safety. 10CFR50.69, Risk-Informed Categorization and Treatment of Structures, Systems and Components for Nuclear Power Reactors, provides guidance on how the safety significance of systems, structures, and components (SSCs) should be reflected in their regulatory treatment. The Nuclear Energy Institute (NEI) has provided 10 CFR 50.69 SSC Categorization Guideline (NEI-00-04) that factors in probabilistic risk assessment (PRA) model insights, as well as deterministic insights, through an integrated decision-making panel. Employing the PRA to inform deterministic requirements enables an appropriately balanced, technically sound categorization to be established. No FHR currently has an adequate PRA or set of design basis accidents to enable establishing the safety classification of its SSCs. While all SSCs used to comply with the general design criteria (GDCs) will be safety related, the intent is to limit the instrumentation risk significance through effective design and reliance on inherent passive safety characteristics. For example, FHRs have no safety-significant temperature threshold phenomena, thus enabling the primary and reserve reactivity control systems required by GDC 26 to be passively, thermally triggered at temperatures well below those for which core or primary coolant boundary damage would occur. Moreover, the passive thermal triggering of the primary and reserve shutdown systems may relegate the control rod drive motors to the control system, substantially decreasing the amount of safety-significant wiring needed. Similarly, FHR decay heat removal systems are intended to be running continuously to minimize the amount of safety-significant instrumentation needed to initiate

Potential of acoustic monitoring for safety assessment of primary system

International Nuclear Information System (INIS)

Olma, B.J.

1997-01-01

Safety assessment of the primary system and its components with respect to their mechanical integrity is increasingly supported by acoustic signature analysis during power operation of the plants. Acoustic signals of Loose Parts Monitoring System sensors are continuously monitored by dedicated digital systems for signal bursts associated with metallic impacts. Several years of ISTec/GRS experience and the practical use of its digital systems MEDEA and RAMSES have shown that acoustic monitoring is very successful for detecting component failures at an early stage. Advanced powerful tools for classification and acoustic evaluation of burst signals have recently been realized. The paper presents diagnosis experiences of BWR's and PWR's safety assessment. (author). 7 refs, 8 figs

School Climate: An Essential Component of a Comprehensive School Safety Plan

Science.gov (United States)

Stark, Heidi

2017-01-01

The intentional assessment and management of school climate is an essential component of a comprehensive school safety plan. The value of this preventive aspect of school safety is often diminished as schools invest resources in physical security measures as a narrowly focused effort to increase school safety (Addington, 2009). This dissertation…

Application of quality assurance program to safety related aging equipment or components

International Nuclear Information System (INIS)

Papaiya, N.C.

1990-01-01

This paper addresses how quality assurance programs and their criteria are applied to safety related and aging equipment or components used in commercial nuclear plant applications. The QA Programs referred to are 10CFR50 Appendix B and EPRI NP-5652. The QA programs as applicable are applied to equipment/component aging qualification, preventive maintenance, surveillance testing and procurement engineering. The intent of this paper is not the technical issues, methods and research of aging. The paper addresses QA program's application to age-related equipment or components in safety related applications. Quality Assurance Program 10CFR50 Appendix B applies to all safety related aging components or equipment related to the qualification program and associated preventive maintenance and surveillance testing programs. Quality Assurance involvement with procurement engineering for age-related commercial grade items supports EPRI NP-5652 and assures that the dedicated OGI is equal to the item purchased as a basic component to 10CFR50 Appendix B requirements

NSSS Component Control System Design of Integral Reactor

International Nuclear Information System (INIS)

Lee, Joon Koo; Kwon, Ho Je; Jeong, Kwong Il; Park, Heui Youn; Koo, In Soo

2005-01-01

MMIS(Man Machine Interface System) of an integral reactor is composed of a Control Room, Plant Protection System, Control System and Monitoring System which are related with the overall plant operation. MMIS is being developed with a new design concept and digital technology to reduce the Human Factor Error and improve the systems' safety, reliability and availability. And CCS(component control system) is also being developed with a new design concept and digital hardware technology A fully digitalized system and design concept are introduced in the NSSS CCS

Safety implications of control systems

International Nuclear Information System (INIS)

Smith, O.L.

1983-01-01

The Safety Implications of Control Systems Program has three major activities in support of USI-A47. The first task is a failure mode and effects analysis of all plant systems which may potentially induce control system disturbance that have safety implications. This task has made a preliminary study of overfill events and recommended cases for further analysis on the hybrid simulator. Work continues on overcooling and undercooling. A detailed investigation of electric power network is in progress. LERs are providing guidance on important failure modes that will provide initial conditions for further simulator studies. The simulator taks is generating a detailed model of the control system supported by appropriate neutronics, hydraulics, and thermodynamics submodels of all other principal plant components. The simulator is in the last stages of development. Checkout calculations are in progress to establish model stability, robustness, and qualitative credibility. Verification against benchmark codes and plant data will follow

CLASSIFICATION OF THE MGR NON-FUEL COMPONENTS DISPOSAL CONTAINER SYSTEM

International Nuclear Information System (INIS)

J.A. Ziegler

1999-01-01

The purpose of this analysis is to document the Quality Assurance (QA) classification of the Monitored Geologic Repository (MGR) non-fuel components disposal container system structures, systems and components (SSCs) performed by the MGR Safety Assurance Department. This analysis also provides the basis for revision of YMP/90-55Q, Q-List (YMP 1998). The Q-List identifies those MGR SSCs subject to the requirements of DOE/RW-0333P, ''Quality Assurance Requirements and Description'' (QARD) (DOE 1998)

Operation safety of control systems. Principles and methods

International Nuclear Information System (INIS)

Aubry, J.F.; Chatelet, E.

2008-01-01

This article presents the main operation safety methods that can be implemented to design safe control systems taking into account the behaviour of the different components with each other (binary 'operation/failure' behaviours, non-consistent behaviours and 'hidden' failures, dynamical behaviours and temporal aspects etc). To take into account these different behaviours, advanced qualitative and quantitative methods have to be used which are described in this article: 1 - qualitative methods of analysis: functional analysis, preliminary risk analysis, failure mode and failure effects analyses; 2 - quantitative study of systems operation safety: binary representation models, state space-based methods, event space-based methods; 3 - application to the design of control systems: safe specifications of a control system, qualitative analysis of operation safety, quantitative analysis, example of application; 4 - conclusion. (J.S.)

Passive safety systems reliability and integration of these systems in nuclear power plant PSA

International Nuclear Information System (INIS)

La Lumia, V.; Mercier, S.; Marques, M.; Pignatel, J.F.

2004-01-01

Innovative nuclear reactor concepts could lead to use passive safety features in combination with active safety systems. A passive system does not need active component, external energy, signal or human interaction to operate. These are attractive advantages for safety nuclear plant improvements and economic competitiveness. But specific reliability problems, linked to physical phenomena, can conduct to stop the physical process. In this context, the European Commission (EC) starts the RMPS (Reliability Methods for Passive Safety functions) program. In this RMPS program, a quantitative reliability evaluation of the RP2 system (Residual Passive heat Removal system on the Primary circuit) has been realised, and the results introduced in a simplified PSA (Probabilistic Safety Assessment). The scope is to get out experience of definition of characteristic parameters for reliability evaluation and PSA including passive systems. The simplified PSA, using event tree method, is carried out for the total loss of power supplies initiating event leading to a severe core damage. Are taken into account: failures of components but also failures of the physical process involved (e.g. natural convection) by a specific method. The physical process failure probabilities are assessed through uncertainty analyses based on supposed probability density functions for the characteristic parameters of the RP2 system. The probabilities are calculated by MONTE CARLO simulation coupled to the CATHARE thermalhydraulic code. The yearly frequency of the severe core damage is evaluated for each accident sequence. This analysis has identified the influence of the passive system RP2 and propose a re-dimensioning of the RP2 system in order to satisfy the safety probabilistic objectives for reactor core severe damage. (authors)

Risk-based rules for crane safety systems

Energy Technology Data Exchange (ETDEWEB)

Ruud, Stian [Section for Control Systems, DNV Maritime, 1322 Hovik (Norway)], E-mail: Stian.Ruud@dnv.com; Mikkelsen, Age [Section for Lifting Appliances, DNV Maritime, 1322 Hovik (Norway)], E-mail: Age.Mikkelsen@dnv.com

2008-09-15

The International Maritime Organisation (IMO) has recommended a method called formal safety assessment (FSA) for future development of rules and regulations. The FSA method has been applied in a pilot research project for development of risk-based rules and functional requirements for systems and components for offshore crane systems. This paper reports some developments in the project. A method for estimating target reliability for the risk-control options (safety functions) by means of the cost/benefit decision criterion has been developed in the project and is presented in this paper. Finally, a structure for risk-based rules is proposed and presented.

Risk-based rules for crane safety systems

International Nuclear Information System (INIS)

Ruud, Stian; Mikkelsen, Age

2008-01-01

The International Maritime Organisation (IMO) has recommended a method called formal safety assessment (FSA) for future development of rules and regulations. The FSA method has been applied in a pilot research project for development of risk-based rules and functional requirements for systems and components for offshore crane systems. This paper reports some developments in the project. A method for estimating target reliability for the risk-control options (safety functions) by means of the cost/benefit decision criterion has been developed in the project and is presented in this paper. Finally, a structure for risk-based rules is proposed and presented

Technical feasibility and reliability of passive safety systems of AC600

International Nuclear Information System (INIS)

Niu, W.; Zeng, X.

1996-01-01

The first step conceptual design of the 600 MWe advanced PWR (AC-600) has been finished by the Nuclear Power Institute of China. Experiments on the passive system of AC-600 are being carried out, and are expected to be completed next year. The main research emphases of AC-600 conceptual design include the advanced core, the passive safety system and simplification. The design objective of AC-600 is that the safety, reliability, maintainability, operation cost and construction period are all improved upon compared to those of PWR plant. One of important means to achieve the objective is using a passive system, which has the following functions whenever its operation is required: providing the reactor core with enough coolant when others fail to make up the lost coolant; reactor residual heat removal; cooling and reducing pressure in the containment and preventing radioactive substances from being released into the environment after occurrence of accident (e.g. LOCA). The system should meet the single failure criterion, and keep operating when a single active component or passive component breaks down during the first 72 hour period after occurrence of accident, or in the long period following the 72 hour period. The passive safety system of AC-600 is composed of the primary safety injection system, the secondary emergency core residual heat removal system and the containment cooling system. The design of the system follows some relevant rules and criteria used by current PWR plant. The system has the ability to bear single failure, two complete separate subsystems are considered, each designed for 100% working capacity. Normal operation is separate from safety operation and avoids cross coupling and interference between systems, improves the reliability of components, and makes it easy to maintain, inspect and test the system. The paper discusses the technical feasibility and reliability of the passive safety system of AC-600, and some issues and test plans are also

Technical feasibility and reliability of passive safety systems of AC600

Energy Technology Data Exchange (ETDEWEB)

Niu, W; Zeng, X [Nuclear Power Inst. of China, Chendu (China)

1996-12-01

The first step conceptual design of the 600 MWe advanced PWR (AC-600) has been finished. Experiments on the passive system of AC-600 are being carried out, and are expected to be completed next year. The main research emphases of AC-600 conceptual design include the advanced core, the passive safety system and simplification. The design objective of AC-600 is that the safety, reliability, maintainability, operation cost and construction period are all improved upon compared to those of PWR plant. One of important means to achieve the objective is using a passive system, which has the following functions whenever its operation is required: providing the reactor core with enough coolant when others fail to make up the lost coolant; reactor residual heat removal; cooling and reducing pressure in the containment and preventing radioactive substances from being released into the environment after occurrence of accident (e.g. LOCA). The system should meet the single failure criterion, and keep operating when a single active component or passive component breaks down during the first 72 hour period after occurrence of accident, or in the long period following the 72 hour period. The passive safety system of AC-600 is composed of the primary safety injection system, the secondary emergency core residual heat removal system and the containment cooling system. The design of the system follows some relevant rules and criteria used by current PWR plant. The system has the ability to bear single failure, two complete separate subsystems are considered, each designed for 100% working capacity. Normal operation is separate from safety operation and avoids cross coupling and interference between systems, improves the reliability of components, and makes it easy to maintain, inspect and test the system. The paper discusses the technical feasibility and reliability of the passive safety system of AC-600, and some issues and test plans are also involved. (author). 3 figs, 1 tab.

CESAR cost-efficient methods and processes for safety-relevant embedded systems

CERN Document Server

Wahl, Thomas

2013-01-01

The book summarizes the findings and contributions of the European ARTEMIS project, CESAR, for improving and enabling interoperability of methods, tools, and processes to meet the demands in embedded systems development across four domains - avionics, automotive, automation, and rail. The contributions give insight to an improved engineering and safety process life-cycle for the development of safety critical systems. They present new concept of engineering tools integration platform to improve the development of safety critical embedded systems and illustrate capacity of this framework for end-user instantiation to specific domain needs and processes. They also advance state-of-the-art in component-based development as well as component and system validation and verification, with tool support. And finally they describe industry relevant evaluated processes and methods especially designed for the embedded systems sector as well as easy adoptable common interoperability principles for software tool integratio...

Using system dynamics simulation for assessment of hydropower system safety

Science.gov (United States)

King, L. M.; Simonovic, S. P.; Hartford, D. N. D.

2017-08-01

Hydropower infrastructure systems are complex, high consequence structures which must be operated safely to avoid catastrophic impacts to human life, the environment, and the economy. Dam safety practitioners must have an in-depth understanding of how these systems function under various operating conditions in order to ensure the appropriate measures are taken to reduce system vulnerability. Simulation of system operating conditions allows modelers to investigate system performance from the beginning of an undesirable event to full system recovery. System dynamics simulation facilitates the modeling of dynamic interactions among complex arrangements of system components, providing outputs of system performance that can be used to quantify safety. This paper presents the framework for a modeling approach that can be used to simulate a range of potential operating conditions for a hydropower infrastructure system. Details of the generic hydropower infrastructure system simulation model are provided. A case study is used to evaluate system outcomes in response to a particular earthquake scenario, with two system safety performance measures shown. Results indicate that the simulation model is able to estimate potential measures of system safety which relate to flow conveyance and flow retention. A comparison of operational and upgrade strategies is shown to demonstrate the utility of the model for comparing various operational response strategies, capital upgrade alternatives, and maintenance regimes. Results show that seismic upgrades to the spillway gates provide the largest improvement in system performance for the system and scenario of interest.

Reliability Analysis of 6-Component Star Markov Repairable System with Spatial Dependence

Directory of Open Access Journals (Sweden)

Liying Wang

2017-01-01

Full Text Available Star repairable systems with spatial dependence consist of a center component and several peripheral components. The peripheral components are arranged around the center component, and the performance of each component depends on its spatial “neighbors.” Vector-Markov process is adapted to describe the performance of the system. The state space and transition rate matrix corresponding to the 6-component star Markov repairable system with spatial dependence are presented via probability analysis method. Several reliability indices, such as the availability, the probabilities of visiting the safety, the degradation, the alert, and the failed state sets, are obtained by Laplace transform method and a numerical example is provided to illustrate the results.

System principles, mathematical models and methods to ensure high reliability of safety systems

Science.gov (United States)

Zaslavskyi, V.

2017-04-01

Modern safety and security systems are composed of a large number of various components designed for detection, localization, tracking, collecting, and processing of information from the systems of monitoring, telemetry, control, etc. They are required to be highly reliable in a view to correctly perform data aggregation, processing and analysis for subsequent decision making support. On design and construction phases of the manufacturing of such systems a various types of components (elements, devices, and subsystems) are considered and used to ensure high reliability of signals detection, noise isolation, and erroneous commands reduction. When generating design solutions for highly reliable systems a number of restrictions and conditions such as types of components and various constrains on resources should be considered. Various types of components perform identical functions; however, they are implemented using diverse principles, approaches and have distinct technical and economic indicators such as cost or power consumption. The systematic use of different component types increases the probability of tasks performing and eliminates the common cause failure. We consider type-variety principle as an engineering principle of system analysis, mathematical models based on this principle, and algorithms for solving optimization problems of highly reliable safety and security systems design. Mathematical models are formalized in a class of two-level discrete optimization problems of large dimension. The proposed approach, mathematical models, algorithms can be used for problem solving of optimal redundancy on the basis of a variety of methods and control devices for fault and defects detection in technical systems, telecommunication networks, and energy systems.

Component Fragility Research Program: Phase 1 component prioritization

International Nuclear Information System (INIS)

Holman, G.S.; Chou, C.K.

1987-06-01

Current probabilistic risk assessment (PRA) methods for nuclear power plants utilize seismic ''fragilities'' - probabilities of failure conditioned on the severity of seismic input motion - that are based largely on limited test data and on engineering judgment. Under the NRC Component Fragility Research Program (CFRP), the Lawrence Livermore National Laboratory (LLNL) has developed and demonstrated procedures for using test data to derive probabilistic fragility descriptions for mechanical and electrical components. As part of its CFRP activities, LLNL systematically identified and categorized components influencing plant safety in order to identify ''candidate'' components for future NRC testing. Plant systems relevant to safety were first identified; within each system components were then ranked according to their importance to overall system function and their anticipated seismic capacity. Highest priority for future testing was assigned to those ''very important'' components having ''low'' seismic capacity. This report describes the LLNL prioritization effort, which also included application of ''high-level'' qualification data as an alternate means of developing probabilistic fragility descriptions for PRA applications

Criteria adopted by the Argentine Nuclear Regulatory Authority for assessing digital systems related to safety

International Nuclear Information System (INIS)

Terrado, Carlos A.; Chiossi, Carlos E.; Felizia, Eduardo R.; Roca, Jose L.; Sajaroff, Pedro M.

2004-01-01

Following the technological evolution in Instrumentation and Control (I and C) design, analog components are replaced by digital in almost every industry. Due to growing challenges of obsolescence and increasing maintenance costs, licensees of nuclear and radioactive installations are increasingly upgrading or replacing their existing I and C analog systems and components. In existing installations, this involves analog to digital replacements. In new installations design, the use of digital I and C systems is being considered from the very beginning, becoming a good alternative, even in safety applications. Up to now, in Argentina, there is no specific rules for safety-related digital systems, every safety system, analog or digital, must comply with the same generic regulations. The Nuclear Regulatory Authority is now developing criteria to assess digital systems related to safety in nuclear and radioactive installations. In this paper some of those criteria, based on local research and the recognized state of the art, are explained. From a regulatory point of view, the use of digital technology often raises new technical and licensing issues, particularly for safety-related applications. Examples include new failure modes, the potential for common-cause failure of redundant components, electromagnetic interference (EMI), software verification and validation, configuration management and a more exhaustive quality assurance system. The mentioned criteria comprehend the design, operation, maintenance and acquisition of digital systems and components important to safety. The main topics covered are: requirements specifications for digital systems, planning and documentation for digital system development, effectiveness of a digital system, commercial off the shelf (COTS) treatment and considerations involving tools for software development. (author)

Spallation Neutron Source Accelerator Facility Target Safety and Non-safety Control Systems

International Nuclear Information System (INIS)

Battle, Ronald E.; DeVan, B.; Munro, John K. Jr.

2006-01-01

The Spallation Neutron Source (SNS) is a proton accelerator facility that generates neutrons for scientific researchers by spallation of neutrons from a mercury target. The SNS became operational on April 28, 2006, with first beam on target at approximately 200 W. The SNS accelerator, target, and conventional facilities controls are integrated by standardized hardware and software throughout the facility and were designed and fabricated to SNS conventions to ensure compatibility of systems with Experimental Physics Integrated Control System (EPICS). ControlLogix Programmable Logic Controllers (PLCs) interface to instruments and actuators, and EPICS performs the high-level integration of the PLCs such that all operator control can be accomplished from the Central Control room using EPICS graphical screens that pass process variables to and from the PLCs. Three active safety systems were designed to industry standards ISA S84.01 and IEEE 603 to meet the desired reliability for these safety systems. The safety systems protect facility workers and the environment from mercury vapor, mercury radiation, and proton beam radiation. The facility operators operated many of the systems prior to beam on target and developed the operating procedures. The safety and non-safety control systems were tested extensively prior to beam on target. This testing was crucial to identify wiring and software errors and failed components, the result of which was few problems during operation with beam on target. The SNS has continued beam on target since April to increase beam power, check out the scientific instruments, and continue testing the operation of facility subsystems

Simplified safety and containment systems for the iris reactor

International Nuclear Information System (INIS)

Conway, L.E.; Lombardi, C.; Ricotti, M.; Oriani, L.

2001-01-01

The IRIS (International Reactor Innovative and Secure) is a 100 - 300 MW modular type pressurized water reactor supported by the U.S. DOE NERI Program. IRIS features a long-life core to provide proliferation resistance and to reduce the volume of spent fuel, as well as reduce maintenance requirements. IRIS utilizes an integral reactor vessel that contains all major primary system components. This integral reactor vessel makes it possible to reduce containment size; making the IRIS more cost competitive. IRIS is being designed to enhance reactor safety, and therefore a key aspect of the IRIS program is the development of the safety and containment systems. These systems are being designed to maximize containment integrity, prevent core uncover following postulated accidents, minimize the probability and consequences of severe accidents, and provide a significant simplification over current safety system designs. The design of the IRIS containment and safety systems has been identified and preliminary analyses have been completed. The IRIS safety concept employs some unique features that minimize the consequences of postulated design basis events. This paper will provide a description of the containment design and safety systems, and will summarize the analysis results. (author)

Computer software program for monitoring the availability of systems and components of electric power generating systems

International Nuclear Information System (INIS)

Petersen, T.A.; Hilsmeier, T.A.; Kapinus, D.M.

1994-01-01

As availabilities of electric power generating stations systems and components become more and more important from a financial, personnel safety, and regulatory requirements standpoint, it is evident that a comprehensive, yet simple and user-friendly program for system and component tracking and monitoring is needed to assist in effectively managing the large volume of systems and components with their large numbers of associated maintenance/availability records. A user-friendly computer software program for system and component availability monitoring has been developed that calculates, displays and monitors selected component and system availabilities. This is a Windows trademark based (Graphical User Interface) program that utilizes a system flow diagram for the data input screen which also provides a visual representation of availability values and limits for the individual components and associated systems. This program can be customized to the user's plant-specific system and component selections and configurations. As will be discussed herein, this software program is well suited for availability monitoring and ultimately providing valuable information for improving plant performance and reducing operating costs

Development of safety factors to be used for evaluation of cracked nuclear components

International Nuclear Information System (INIS)

Brickstad, B.; Bergman, M.

1996-10-01

A modified concept for safety evaluation is introduced which separately accounts for the failure mechanisms fracture and plastic collapse. For application on nuclear components a set of safety factors are also proposed that retain the safety margins expressed in ASME, section III and XI. By performing comparative studies of the acceptance levels for surface cracks in pipes and a pressure vessel, it is shown that some of the anomalies connected with the old safety procedures are removed. It is the authors belief that the outlined safety evaluation procedure has the capability of treating cracks in a consistent way and that the procedure together with the proposed safety factors fulfill the basic safety requirements for nuclear components. Hopefully, it is possible in the near future to develop a probabilistic safety assessment procedure in Sweden, which enables a systematic treatment of uncertainties in the involved data. 14 refs

Aspects of safety assessments for package with additional equipment components

International Nuclear Information System (INIS)

Reiche, I.; Boerst, F.M.; Krietsch, T.

2004-01-01

Many paragraphs in TS-R-1 contain the terms ''package'' or ''packaging''. These terms are defined in TS-R-1 paras 230 and 231 and explained in TS-G-1.1 paras 230.1 - 230.6. The importance of a consistent understanding of these definitions has been shown by recent discussions during the assessment of applications for package design approval. There was disagreement, if equipment components attached to the container body during transport, e.g. a transport frame, should be considered part of the package and taken into account in the safety assessment for the package. Discussions were also caused by the way inner design components are treated in the safety assessment of the package. This paper summarises the regulatory requirements to such additional equipment components and presents the way of their inclusion into the package design approval process in Germany

Prognostic Health Monitoring System: Component Selection Based on Risk Criteria and Economic Benefit Assessment

International Nuclear Information System (INIS)

Pham, Binh T.; Agarwal, Vivek; Lybeck, Nancy J.; Tawfik, Magdy S.

2012-01-01

Prognostic health monitoring (PHM) is a proactive approach to monitor the ability of structures, systems, and components (SSCs) to withstand structural, thermal, and chemical loadings over the SSCs planned service lifespan. The current efforts to extend the operational license lifetime of the aging fleet of U.S. nuclear power plants from 40 to 60 years and beyond can benefit from a systematic application of PHM technology. Implementing a PHM system would strengthen the safety of nuclear power plants, reduce plant outage time, and reduce operation and maintenance costs. However, a nuclear power plant has thousands of SSCs, so implementing a PHM system that covers all SSCs requires careful planning and prioritization. This paper therefore focuses on a component selection that is based on the analysis of a component's failure probability, risk, and cost. Ultimately, the decision on component selection depends on the overall economical benefits arising from safety and operational considerations associated with implementing the PHM system. (author)

The socio-technical system and nuclear safety

International Nuclear Information System (INIS)

Stefanescu, Petre; Mihailescu, Nicolae; Dragusin, Octavian

1999-01-01

In the field of nuclear safety there have been defined notions like 'technical factors' and 'human factors'. The technical factors depend on designing and manufacturing of components/equipment, actually depend on the people's work. The study of human factors consists in analyzing and recommending the terms that allow an individual to be a reliable and safety agent. Accordingly, he/she is placed in working conditions corresponding to human abilities, associating the means of three levels: - designing, i.e. the action upon the technical system and upon work organization; - correction, i.e. the action upon the evolution of the technical system and organizing; - formation/training, i.e. action upon operators. The paper presents a characterization of the socio-technical system and on this basis discusses the issue of individual adjustment to the socio-technical system and reciprocally, the issue of the socio-technical system adjustment to the individual. Concepts as: ergonomics, physical medium, man/machine interface and support of the operator, man/machine task sharing, the work organizing are put in relation with the central subject, the nuclear safety

Reliability analysis of nuclear component cooling water system using semi-Markov process model

International Nuclear Information System (INIS)

Veeramany, Arun; Pandey, Mahesh D.

2011-01-01

Research highlights: → Semi-Markov process (SMP) model is used to evaluate system failure probability of the nuclear component cooling water (NCCW) system. → SMP is used because it can solve reliability block diagram with a mixture of redundant repairable and non-repairable components. → The primary objective is to demonstrate that SMP can consider Weibull failure time distribution for components while a Markov model cannot → Result: the variability in component failure time is directly proportional to the NCCW system failure probability. → The result can be utilized as an initiating event probability in probabilistic safety assessment projects. - Abstract: A reliability analysis of nuclear component cooling water (NCCW) system is carried out. Semi-Markov process model is used in the analysis because it has potential to solve a reliability block diagram with a mixture of repairable and non-repairable components. With Markov models it is only possible to assume an exponential profile for component failure times. An advantage of the proposed model is the ability to assume Weibull distribution for the failure time of components. In an attempt to reduce the number of states in the model, it is shown that usage of poly-Weibull distribution arises. The objective of the paper is to determine system failure probability under these assumptions. Monte Carlo simulation is used to validate the model result. This result can be utilized as an initiating event probability in probabilistic safety assessment projects.

Proposal of Integrated Safety Assessment Methodology for Embedded System

International Nuclear Information System (INIS)

Sun, Wei; Kageyama, Makoto; Kanemoto, Shigeru

2011-01-01

To do risk analysis and risk evaluation for complicated safety critical embedded systems, there are three things should be paid a good attention: 1) an efficient and integrated model expression of embedded systems: 2) systematic risk analysis based on integrated system model: 3) quantitative risk evaluation for software and hardware integrated system. In this paper, taken electric water boiler as a target system, a proposal of risk analysis and risk evaluation for the embedded system is presented to meet these three purposes. In risk analysis, MFM is used and FT is generated automatically from MFM following some rules: And in risk evaluation, GO-FLOW is used to evaluate the reliability of sensors. And furthermore, FIT is applied to evaluate the safety software logic based on the diversity design concept. Although the electric water boiler is a simple example, it includes the key components of the embedded system like sensors, actuators, and software component. So, the process of modeling, analysis, and evaluation could be applied to other kinds of complicated embedded systems

Design and qualification of HPD based designs for safety systems

International Nuclear Information System (INIS)

Sharma, Mukesh Kr.; Chavan, Madhavi A.; Sawhney, Pratibha A.; Mohanty, Ashutos; John, Ajith K.; Ganesh, G.

2014-01-01

Field Programmable Gate Arrays (FPGA) and Complex Programmable Logic Devices (CPLD) are increasingly being used in C and I system of NPPs. The function of such an integrated circuit is not defined by the supplier of the physical component or micro-electronic technology but by the C and I designer. The hardware subsystems implemented in these devices typically use Hardware Description Language (HDL) like VHDL or Verilog to describe the functionality at the design entry level. These circuits are commonly known as 'HDL-Programmed Devices', (HPD). RCnD has developed a set of hardware boards to be used in next generation C and I systems. The boards have been designed based on present day technology and components. The intelligence of these boards has been implemented in HPDs (FPGA/CPLD) using VHDL. Since these boards are used in the safety and safety related systems, they have undergone a rigorous V and V process and qualification tests. This paper discusses the design attributes and qualification of these HPD based designs for nuclear class safety systems. (author)

System safety education focused on flight safety

Science.gov (United States)

Holt, E.

1971-01-01

The measures necessary for achieving higher levels of system safety are analyzed with an eye toward maintaining the combat capability of the Air Force. Several education courses were provided for personnel involved in safety management. Data include: (1) Flight Safety Officer Course, (2) Advanced Safety Program Management, (3) Fundamentals of System Safety, and (4) Quantitative Methods of Safety Analysis.

Ageing study of the engineered safety features actuation system of the Loviisa NPP

International Nuclear Information System (INIS)

Simola, K.; Maskuniitty, M.

1995-06-01

An ageing study of the engineered safety features actuation system of the Loviisa nuclear power plant has been performed. The operating experience, including failure and maintenance histories of analog measuring devices, logics for safety signal formation and individual control electronics of pumps and valves, has been collected and analysed. The safety importance of system components has been studied with a fault tree analysis of a selected safety function. Based on the results of the analysis of operating experiences and the fault tree analysis, some components were selected for deeper analyses. According to the operating experience, the amount of failures in the Loviisa plant safety system has been low and no increasing trend in the failure history can yet be observed. Only a few failures had prohibited the propagation of the safety signal, mostly the failures have caused a false alarm. The failures reported have concerned mainly limit signal units, transmitters, and priority units. According to the fault tree analysis of one safety function, the most important components of this subsystem are individual control units and pulse/DC converters. Failure modes and effect analyses were performed for priority and individual control unit, limit signal unit and comparator and pulse/DC converter in order to identify the critical failure modes of these devices. (orig.) (15 refs., 26 figs., 9 tabs.)

The problem of maintenance of strength, lifetime and safety of the structural components operational NPP from items of a system approach

International Nuclear Information System (INIS)

Getman, A.F.

2005-01-01

The strength of the structural components and pipelines NPP determines largely their lifetime, radiation and nuclear safety. As shows world experience of operation NPP, in a series of cases during operation the local damages, breaks and destructions of elements of the equipment and pipelines emerge. These cases force maintaining organizations to execute on NPP large volumes of the control, repair and modernizing of the equipment and pipelines. These activities require large material inputs (net less than 50% of the cost of operation NPP), however not always are effective and in a series of cases do not allow to reach required of level reliability and safety. The reason of such condition of a problem is that the measures executed on NPP, developed on stretch of long time and under influence of the diverse factors. Besides until now there is no unified scientific methodology of a case study of maintenance of strength, lifetime and safety of the operational equipment and pipelines NPP. The application of a system approach to a problem of maintenance of strength, lifetime and safety of the equipment and pipelines operational NPP allows to consider a problem as a whole, from unified items, to define the most fast and effective paths it of the solution and to decide problems in as much as possible short times at minimum material inputs. The experience of practical application of a system approach at the solution of separate problems of operation NPP has allowed to develop a lot of effective new techniques, technologies and means, which application allows essentially to increase reliability and gamma percentage lifetime of elements NPP, to which they were applied. As an example in the report the outcomes of application of a system approach for maintenance of SG tubes integrity of reactors of a type WWER are adduced. The application of a system approach for all elements of the equipment and pipelines NPP will allow to increase it reliability and safety not less, than on 10

Software Safety Life cycle and Method of POSAFE-Q System

International Nuclear Information System (INIS)

Lee, Jang-Soo; Kwon, Kee-Choon

2006-01-01

This paper describes the relationship between the overall safety life cycle and the software safety life cycle during the development of the software based safety systems of Nuclear Power Plants. This includes the design and evaluation activities of components as well as the system. The paper also compares the safety life cycle and planning activities defined in IEC 61508 with those in IEC 60880, IEEE 7-4.3.2, and IEEE 1228. Using the KNICS project as an example, software safety life cycle and safety analysis methods applied to the POSAFE-Q are demonstrated. KNICS software safety life cycle is described by comparing to the software development, testing, and safety analysis process with international standards. The safety assessment of the software for POSAFE-Q is a joint Korean German project. The assessment methods applied in the project and the experiences gained from this project are presented

Sensitivity analysis on the component cooling system of the Angra 1 NPP

International Nuclear Information System (INIS)

Castro Silva, Luiz Euripedes Massiere de

1995-01-01

The component cooling system has been studied within the scope of the Probabilistic Safety Analysis of the Angra I NPP in order to assure that the proposed modelling suits as close as possible the functioning system and its availability aspects. In such a way a sensitivity analysis was performed on the equivalence between the operating modes of the component cooling system and its results show the fitness of the model. (author). 4 refs, 3 figs, 3 tabs

Research program Integrity of Components (FKS). A substantial contribution to component safety

International Nuclear Information System (INIS)

Kussmaul, K.; Roos, E.; Foehl, J.

1998-01-01

The main objectives pursued are: (a) verify the quality of reactor pressure vessels in existing LWR-type reactors, and (b) quantify the safety margin using both specified and non-specified materials and welds. On the basis of knowledge obtained through earlier programmes, the research project was to examine in particular deviations from the specified materials properties, for more exact quantification of the safety margin before RPV failure. There are three major factors influencing the component performance until failure, which are aggregate material fatigue, flaws, loading conditions, and the research work was to focus on the materials properties. An item of main interest was to assess the impact of long service life on the materials properties, assuming particularly unfavourable boundary conditions for materials properties and operational loads. (orig./CB) [de

Patient Safety Learning Systems: A Systematic Review and Qualitative Synthesis.

Science.gov (United States)

2017-01-01

A patient safety learning system (sometimes called a critical incident reporting system) refers to structured reporting, collation, and analysis of critical incidents. To inform a provincial working group's recommendations for an Ontario Patient Safety Event Learning System, a systematic review was undertaken to determine design features that would optimize its adoption into the health care system and would inform implementation strategies. The objective of this review was to address two research questions: (a) what are the barriers to and facilitators of successful adoption of a patient safety learning system reported by health professionals and (b) what design components maximize successful adoption and implementation? To answer the first question, we used a published systematic review. To answer the second question, we used scoping study methodology. Common barriers reported in the literature by health care professionals included fear of blame, legal penalties, the perception that incident reporting does not improve patient safety, lack of organizational support, inadequate feedback, lack of knowledge about incident reporting systems, and lack of understanding about what constitutes an error. Common facilitators included a non-accusatory environment, the perception that incident reporting improves safety, clarification of the route of reporting and of how the system uses reports, enhanced feedback, role models (such as managers) using and promoting reporting, legislated protection of those who report, ability to report anonymously, education and training opportunities, and clear guidelines on what to report. Components of a patient safety learning system that increased successful adoption and implementation were emphasis on a blame-free culture that encourages reporting and learning, clear guidelines on how and what to report, making sure the system is user-friendly, organizational development support for data analysis to generate meaningful learning outcomes

Green IT engineering components, networks and systems implementation

CERN Document Server

Kondratenko, Yuriy; Kacprzyk, Janusz

2017-01-01

This book presents modern approaches to improving the energy efficiency, safety and environmental performance of industrial processes and products, based on the application of advanced trends in Green Information Technologies (IT) Engineering to components, networks and complex systems (software, programmable and hardware components, communications, Cloud and IoT-based systems, as well as IT infrastructures). The book’s 16 chapters, prepared by authors from Greece, Malaysia, Russia, Slovakia, Ukraine and the United Kingdom, are grouped into four sections: (1) The Green Internet of Things, Cloud Computing and Data Mining, (2) Green Mobile and Embedded Control Systems, (3) Green Logic and FPGA Design, and (4) Green IT for Industry and Smart Grids. The book will motivate researchers and engineers from different IT domains to develop, implement and propagate green values in complex systems. Further, it will benefit all scientists and graduate students pursuing research in computer science with a focus on green ...

Development and implementation of setpoint tolerances for special safety systems

International Nuclear Information System (INIS)

Oliva, A.F.; Balog, G.; Parkinson, D.G.; Archinoff, G.H.

1991-01-01

The establishment of tolerances and impairment limits for special safety system setpoints is part of the process whereby the plant operator demonstrates to the regulatory authority that the plant operates safely and within the defined plant licensing envelope. The licensing envelope represents the set of limits and plant operating state and for which acceptably safe plant operation has been demonstrated by the safety analysis. By definition, operation beyond this envelope contributes to overall safety system unavailability. Definition of the licensing envelope is provided in a wide range of documents including the plant operating licence, the safety report, and the plant operating policies and principles documents. As part of the safety analysis, limits are derived for each special safety system initiating parameter such that the relevant safety design objectives are achieved for all design basis events. If initiation on a given parameter occurs at a level beyond its limit, there is a potential reduction in safety system effectiveness relative to the performance credited in the plant safety analysis. These safety system parameter limits, when corrected for random and systematic instrument errors and other errors inherent in the process of periodic testing or calibration, are then used to derive parameter impairment levels and setpoint tolerances. This paper describes the methodology that has evolved at Ontario Hydro for developing and implementing tolerances for special safety system parameters (i.e., the shutdown systems, emergency coolant injection system and containment system). Tolerances for special safety system initiation setpoints are addressed specifically, although many of the considerations discussed here will apply to performance limits for other safety system components. The first part of the paper deals with the approach that has been adopted for defining and establishing setpoint limits and tolerances. The remainder of the paper addresses operational

Nuclear power systems: Their safety

International Nuclear Information System (INIS)

Myers, L.C.

1993-01-01

Mankind utilizes energy in many forms and from a variety of sources. Canada is one of a growing number of countries which have chosen to embrace nuclear-electric generation as a component of their energy systems. As of August 1992 there were 433 power reactors operating in 35 countries and accounting for more than 15% of the world's production of electricity. In 1992, thirteen countries derived at least 25% of their electricity from nuclear units, with France leading at nearly 70%. In the same year, Canada produced about 16% of its electricity from nuclear units. Some 68 power reactors are under construction in 16 countries, enough to expand present generating capacity by close to 20%. No human endeavour carries the guarantee of perfect safety and the question of whether or not nuclear-electric generation represents an 'acceptable' risk to society has long been vigorously debated. Until the events of late April 1986, nuclear safety had indeed been an issue for discussion, for some concern, but not for alarm. The accident at the Chernobyl reactor in the USSR has irrevocably changed all that. This disaster brought the matter of nuclear safety back into the public mind in a dramatic fashion. This paper discusses the issue of safety in complex energy systems and provides brief accounts of some of the most serious reactor accidents which have occurred to date. (author). 7 refs

Role of computers in CANDU safety systems

International Nuclear Information System (INIS)

Hepburn, G.A.; Gilbert, R.S.; Ichiyen, N.M.

1985-01-01

Small digital computers are playing an expanding role in the safety systems of CANDU nuclear generating stations, both as active components in the trip logic, and as monitoring and testing systems. The paper describes three recent applications: (i) A programmable controller was retro-fitted to Bruce ''A'' Nuclear Generating Station to handle trip setpoint modification as a function of booster rod insertion. (ii) A centralized monitoring computer to monitor both shutdown systems and the Emergency Coolant Injection system, is currently being retro-fitted to Bruce ''A''. (iii) The implementation of process trips on the CANDU 600 design using microcomputers. While not truly a retrofit, this feature was added very late in the design cycle to increase the margin against spurious trips, and has now seen about 4 unit-years of service at three separate sites. Committed future applications of computers in special safety systems are also described. (author)

Ranking of risk significant components for the Davis-Besse Component Cooling Water System

International Nuclear Information System (INIS)

Seniuk, P.J.

1994-01-01

Utilities that run nuclear power plants are responsible for testing pumps and valves, as specified by the American Society of Mechanical Engineers (ASME) that are required for safe shutdown, mitigating the consequences of an accident, and maintaining the plant in a safe condition. These inservice components are tested according to ASME Codes, either the earlier requirements of the ASME Boiler and Pressure Vessel Code, Section XI, or the more recent requirements of the ASME Operation and Maintenance Code, Section IST. These codes dictate test techniques and frequencies regardless of the component failure rate or significance of failure consequences. A probabilistic risk assessment or probabilistic safety assessment may be used to evaluate the component importance for inservice test (IST) risk ranking, which is a combination of failure rate and failure consequences. Resources for component testing during the normal quarterly verification test or postmaintenance test are expensive. Normal quarterly testing may cause component unavailability. Outage testing may increase outage cost with no real benefit. This paper identifies the importance ranking of risk significant components in the Davis-Besse component cooling water system. Identifying the ranking of these risk significant IST components adds technical insight for developing the appropriate test technique and test frequency

Preliminary design of safety and interlock system for indian test facility of diagnostic neutral beam

International Nuclear Information System (INIS)

Tyagi, Himanshu; Soni, Jignesh; Yadav, Ratnakar; Bandyopadhyay, Mainak; Rotti, Chandramouli; Gahlaut, Agrajit; Joshi, Jaydeep; Parmar, Deepak; Bansal, Gourab; Pandya, Kaushal; Chakraborty, Arun

2016-01-01

Highlights: • Indian Test Facility being built to characterize DNB for ITER delivery. • Interlock system required to safeguard the investment incurred in building the facility and protecting ITER deliverable components. • Interlock levels upto 3IL-3 identified. • Safety instrumented system for occupational safety being designed. Safety I&C functions of SIL-2 identified. • The systems are based on ITER PIS and PSS design guidelines. - Abstract: Indian Test Facility (INTF) is being built in Institute For Plasma Research to characterize Diagnostic Neutral Beam in co-operation with ITER Organization. INTF is a complex system which consists of several plant systems like beam source, gas feed, vacuum, cryogenics, high voltage power supplies, high power RF generators, mechanical systems and diagnostics systems. Out of these, several INTF components are ITER deliverable, that is, beam source, beam line components and power supplies. To ensure successful operation of INTF involving integrated operation of all the constituent plant systems a matured Data Acquisition and Control System (DACS) is required. The INTF DACS is based on CODAC platform following on PCDH (Plant Control Design Handbook) guidelines. The experimental phases involve application of HV power supplies (100 KV) and High RF power (∼800 KW) which will produce energetic beam of maximum power 6MW within the facility for longer durations. Hence the entire facility will be exposed tohigh heat fluxes and RF radiations. To ensure investment protection and to provide occupational safety for working personnel a matured Safety and Interlock system is required for INTF. The Safety and Interlock systems are high-reliability I&C systems devoted completely to the specific functions. These systems will be separate from the conventional DACS of INTF which will handle the conventional control and acquisition functions. Both, the Safety and Interlock systems are based on IEC 61511 and IEC 61508 standards as

Preliminary design of safety and interlock system for indian test facility of diagnostic neutral beam

Energy Technology Data Exchange (ETDEWEB)

Tyagi, Himanshu, E-mail: htyagi@iter-india.org [ITER-India, Institute For Plasma Research, Bhat, Gandhinagar, Gujarat (India); Soni, Jignesh [Institute For Plasma Research, Bhat, Gandhinagar, Gujarat (India); Yadav, Ratnakar; Bandyopadhyay, Mainak; Rotti, Chandramouli [ITER-India, Institute For Plasma Research, Bhat, Gandhinagar, Gujarat (India); Gahlaut, Agrajit [Institute For Plasma Research, Bhat, Gandhinagar, Gujarat (India); Joshi, Jaydeep; Parmar, Deepak [ITER-India, Institute For Plasma Research, Bhat, Gandhinagar, Gujarat (India); Bansal, Gourab; Pandya, Kaushal; Chakraborty, Arun [Institute For Plasma Research, Bhat, Gandhinagar, Gujarat (India)

2016-11-15

Highlights: • Indian Test Facility being built to characterize DNB for ITER delivery. • Interlock system required to safeguard the investment incurred in building the facility and protecting ITER deliverable components. • Interlock levels upto 3IL-3 identified. • Safety instrumented system for occupational safety being designed. Safety I&C functions of SIL-2 identified. • The systems are based on ITER PIS and PSS design guidelines. - Abstract: Indian Test Facility (INTF) is being built in Institute For Plasma Research to characterize Diagnostic Neutral Beam in co-operation with ITER Organization. INTF is a complex system which consists of several plant systems like beam source, gas feed, vacuum, cryogenics, high voltage power supplies, high power RF generators, mechanical systems and diagnostics systems. Out of these, several INTF components are ITER deliverable, that is, beam source, beam line components and power supplies. To ensure successful operation of INTF involving integrated operation of all the constituent plant systems a matured Data Acquisition and Control System (DACS) is required. The INTF DACS is based on CODAC platform following on PCDH (Plant Control Design Handbook) guidelines. The experimental phases involve application of HV power supplies (100 KV) and High RF power (∼800 KW) which will produce energetic beam of maximum power 6MW within the facility for longer durations. Hence the entire facility will be exposed tohigh heat fluxes and RF radiations. To ensure investment protection and to provide occupational safety for working personnel a matured Safety and Interlock system is required for INTF. The Safety and Interlock systems are high-reliability I&C systems devoted completely to the specific functions. These systems will be separate from the conventional DACS of INTF which will handle the conventional control and acquisition functions. Both, the Safety and Interlock systems are based on IEC 61511 and IEC 61508 standards as

Brakes, brake control and driver assistance systems function, regulation and components

CERN Document Server

2014-01-01

Braking systems have been continuously developed and improved throughout the last years. Major milestones were the introduction of antilock braking system (ABS) and electronic stability program. This reference book provides a detailed description of braking components and how they interact in electronic braking systems. Contents Motor vehicle safety.- Basic principles of vehicle dynamics.- Car braking systems.- Car braking-system components.- Wheel brakes.- Antilock breaking systems.- Traction control system.- Electronic stability program.- Automatic brake functions.- Hydraulic modulator.- Sensors for brake control.- Sensotronic brake control.- Active steering.- Occupant protection systems.- Driver assistance systems.- Adaptive cruise control.- Parking systems.- Instrumentation.- Orientation methods.- Navigation systems.- Workshop technology. The target groups Motor-vehicle technicians in education and vocational training Master-mechanics and technicians in garage-workshops Teachers and lecturers in vocation...

Summary of component reliability data for probabilistic safety analysis of Korean standard nuclear power plant

International Nuclear Information System (INIS)

Choi, S. Y.; Han, S. H.

2004-01-01

The reliability data of Korean NPP that reflects the plant specific characteristics is necessary for PSA of Korean nuclear power plants. We have performed a study to develop the component reliability DB and S/W for component reliability analysis. Based on the system, we had have collected the component operation data and failure/repair data during plant operation data to 1998/2000 for YGN 3,4/UCN 3,4 respectively. Recently, we have upgraded the database by collecting additional data by 2002 for Korean standard nuclear power plants and performed component reliability analysis and Bayesian analysis again. In this paper, we supply the summary of component reliability data for probabilistic safety analysis of Korean standard nuclear power plant and describe the plant specific characteristics compared to the generic data

Expansion of passive safety function

International Nuclear Information System (INIS)

Inai, Nobuhiko; Nei, Hiromichi; Kumada, Toshiaki.

1995-01-01

Expansion of the use of passive safety functions is proposed. Two notions are presented. One is that, in the design of passive safety nuclear reactors where aversion of active components is stressed, some active components are purposely introduced, by which a system is built in such a way that it behaves in an apparently passive manner. The second notion is that, instead of using a passive safety function alone, a passive safety function is combined with some active components, relating the passivity in the safety function with enhanced controllability in normal operation. The nondormant system which the authors propose is one example of the first notion. This is a system in which a standby safety system is a portion of the normal operation system. An interpretation of the nondormant system via synergetics is made. As an example of the second notion, a PIUS density lock aided with active components is proposed and is discussed

John M. Eisenberg Patient Safety Awards. System innovation: Veterans Health Administration National Center for Patient Safety.

Science.gov (United States)

Heget, Jeffrey R; Bagian, James P; Lee, Caryl Z; Gosbee, John W

2002-12-01

In 1998 the Veterans Health Administration (VHA) created the National Center for Patient Safety (NCPS) to lead the effort to reduce adverse events and close calls systemwide. NCPS's aim is to foster a culture of safety in the Department of Veterans Affairs (VA) by developing and providing patient safety programs and delivering standardized tools, methods, and initiatives to the 163 VA facilities. To create a system-oriented approach to patient safety, NCPS looked for models in fields such as aviation, nuclear power, human factors, and safety engineering. Core concepts included a non-punitive approach to patient safety activities that emphasizes systems-based learning, the active seeking out of close calls, which are viewed as opportunities for learning and investigation, and the use of interdisciplinary teams to investigate close calls and adverse events through a root cause analysis (RCA) process. Participation by VA facilities and networks was voluntary. NCPS has always aimed to develop a program that would be applicable both within the VA and beyond. NCPS's full patient safety program was tested and implemented throughout the VA system from November 1999 to August 2000. Program components included an RCA system for use by caregivers at the front line, a system for the aggregate review of RCA results, information systems software, alerts and advisories, and cognitive acids. Following program implementation, NCPS saw a 900-fold increase in reporting of close calls of high-priority events, reflecting the level of commitment to the program by VHA leaders and staff.

Software Safety Risk in Legacy Safety-Critical Computer Systems

Science.gov (United States)

Hill, Janice L.; Baggs, Rhoda

2007-01-01

Safety Standards contain technical and process-oriented safety requirements. Technical requirements are those such as "must work" and "must not work" functions in the system. Process-Oriented requirements are software engineering and safety management process requirements. Address the system perspective and some cover just software in the system > NASA-STD-8719.13B Software Safety Standard is the current standard of interest. NASA programs/projects will have their own set of safety requirements derived from the standard. Safety Cases: a) Documented demonstration that a system complies with the specified safety requirements. b) Evidence is gathered on the integrity of the system and put forward as an argued case. [Gardener (ed.)] c) Problems occur when trying to meet safety standards, and thus make retrospective safety cases, in legacy safety-critical computer systems.

Quality assurance grading criteria for plant systems and components: Results from a pilot plant project at Grand Gulf Nuclear Station. Final report

International Nuclear Information System (INIS)

Parkinson, W.J.

1995-12-01

As part of the original design of a nuclear power plant, the NSSS vendor, architect/engineer and utility identified structures, systems and components (SSCs) as safety related and assigned them to a Q-list. A Q-list is usually very large, e.g. 75,000 components, which creates large ongoing annual operating costs for the utility. Operating experience and the greater knowledge of plant systems safety accumulated during the past 20 years have suggested that many components are not truly important to safety and do not warrant the Q-classification and the associated costs. The completion of Probabilistic Safety Analyses (PSAs) for many nuclear power plants has contributed to this greater knowledge. This report describes a practical application of PSA technology to modify the existing QA program at the Grand Gulf Nuclear Station. Section 1 introduces the term, QA Safety Significant (QASS), and relates it to the existing term, ''safety related''. Section 2 describes six deterministic criteria as a basis for classifying systems as QASS or non-QASS. An expert panel reviewed 421 systems at Grand Gulf Nuclear Station and identified 42 of them as QASS. All components in non-QASS systems are classified as non-QASS. For QASS systems, Section 3 describes five deterministic criteria for classifying components as QASS or non-QASS. By using these two sets of criteria, the expert panel found that the number of components requiring full QA compliance could be reduced by 24%. These results are summarized in Section 4

Safety evaluation report related to the preliminary design of the Standard Reference System, RESAR-414

International Nuclear Information System (INIS)

1978-11-01

The safety evaluation for the Westinghouse Standard Reactor includes information on general reactor characteristics; design criteria for systems and components; reactor coolant system; engineered safety systems; instrumentation and controls; electric power systems; auxiliary systems; steam and power conversion system; radioactive waste management; radiation protection; conduct of operations; accident analyses; and quality assurance

An estimation method of system failure frequency using both structure and component failure data

International Nuclear Information System (INIS)

Takaragi, Kazuo; Sasaki, Ryoichi; Shingai, Sadanori; Tominaga, Kenji

1981-01-01

In recent years, the importance of reliability analysis is appreciated for large systems such as nuclear power plants. A reliability analysis method is described for a whole system, using structure failure data for its main working subsystem and component failure data for its safety protection subsystem. The subsystem named main working system operates normally, and the subsystem named safety protection system acts as standby or protection. Thus the main and the protection systems are given mutually different failure data; then, between the subsystems, there exists common mode failure, i.e. the component failure affecting the reliability of both two. A calculation formula for sytem failure frequency is first derived. Then, a calculation method with digraphs is proposed for conditional system failure probability. Finally the results of numerical calculation are given for the purpose of explanation. (J.P.N.)

Statistics of Shared Components in Complex Component Systems

Science.gov (United States)

Mazzolini, Andrea; Gherardi, Marco; Caselle, Michele; Cosentino Lagomarsino, Marco; Osella, Matteo

2018-04-01

Many complex systems are modular. Such systems can be represented as "component systems," i.e., sets of elementary components, such as LEGO bricks in LEGO sets. The bricks found in a LEGO set reflect a target architecture, which can be built following a set-specific list of instructions. In other component systems, instead, the underlying functional design and constraints are not obvious a priori, and their detection is often a challenge of both scientific and practical importance, requiring a clear understanding of component statistics. Importantly, some quantitative invariants appear to be common to many component systems, most notably a common broad distribution of component abundances, which often resembles the well-known Zipf's law. Such "laws" affect in a general and nontrivial way the component statistics, potentially hindering the identification of system-specific functional constraints or generative processes. Here, we specifically focus on the statistics of shared components, i.e., the distribution of the number of components shared by different system realizations, such as the common bricks found in different LEGO sets. To account for the effects of component heterogeneity, we consider a simple null model, which builds system realizations by random draws from a universe of possible components. Under general assumptions on abundance heterogeneity, we provide analytical estimates of component occurrence, which quantify exhaustively the statistics of shared components. Surprisingly, this simple null model can positively explain important features of empirical component-occurrence distributions obtained from large-scale data on bacterial genomes, LEGO sets, and book chapters. Specific architectural features and functional constraints can be detected from occurrence patterns as deviations from these null predictions, as we show for the illustrative case of the "core" genome in bacteria.

NASA System Safety Handbook. Volume 2: System Safety Concepts, Guidelines, and Implementation Examples

Science.gov (United States)

Dezfuli, Homayoon; Benjamin, Allan; Everett, Christopher; Feather, Martin; Rutledge, Peter; Sen, Dev; Youngblood, Robert

2015-01-01

This is the second of two volumes that collectively comprise the NASA System Safety Handbook. Volume 1 (NASASP-210-580) was prepared for the purpose of presenting the overall framework for System Safety and for providing the general concepts needed to implement the framework. Volume 2 provides guidance for implementing these concepts as an integral part of systems engineering and risk management. This guidance addresses the following functional areas: 1.The development of objectives that collectively define adequate safety for a system, and the safety requirements derived from these objectives that are levied on the system. 2.The conduct of system safety activities, performed to meet the safety requirements, with specific emphasis on the conduct of integrated safety analysis (ISA) as a fundamental means by which systems engineering and risk management decisions are risk-informed. 3.The development of a risk-informed safety case (RISC) at major milestone reviews to argue that the systems safety objectives are satisfied (and therefore that the system is adequately safe). 4.The evaluation of the RISC (including supporting evidence) using a defined set of evaluation criteria, to assess the veracity of the claims made therein in order to support risk acceptance decisions.

Lifetime management for mechanical systems, structures and components in nuclear power plants

International Nuclear Information System (INIS)

Roos, E.; Herter, K.-H.; Schuler, X.

2006-01-01

Guidelines, codes and standards contain regulations and requirements with respect to the quality of mechanical systems, structures and components (SSC) of nuclear power plants. These concern safe operation during the total lifetime (lifetime management), safety against ageing phenomena (ageing management) as well as proof of integrity (e.g. break exclusion or avoidance of fracture). Within this field the ageing management is a key element. Depending on the safety-relevance of the SSC under observation including preventive maintenance various tasks are required in particular to clarify the mechanisms which contribute system-specifically to the damage of the components and systems and to define their controlling parameters which have to be monitored and checked. Appropriate continuous or discontinuous measures are to be considered in this connection. The approach to ensure a high standard of quality in operation and the management of the technical and organisational aspects are demonstrated and explained

Strategy for determining life expectancy in mechanical components in an overall system

International Nuclear Information System (INIS)

Tenckhoff, E.; Erve, M.

1990-01-01

The safety standard at a nuclear power station achieved at the time of commissioning on the basis of the state of the art during the design and construction stage has to be maintained over the entire working life of the unit. Original design life expectancy is under review in the light of new safety experience and developments. The results of such analysis can serve not only preventive maintenance purposes but also as the basis for supporting and extending the planned or approved working life; they help increase availability. A comprehensive analysis strategy to establish the actual condition and residual life expectancy of components, systems and complete units has been developed by Siemens/KWU. The results of this analysis can lead to action to extend the life expectancy of components and systems and improvements in systems and subsystems. This report quotes a number of examples. 6 figs

Analysis approach for common cause failure on non-safety digital control system

Energy Technology Data Exchange (ETDEWEB)

Kim, Yun Goo; Oh, Eungse [Korea Hydro and Nuclear Power Co. Ltd., Daejeon (Korea, Republic of)

2014-05-15

The effects of common cause failure (CCF) on safety digital instrumentation and control (I and C) system had been considered in defense in depth and diversity coping analysis with safety analysis method. For the non-safety system, single failure had been considered for safety analysis. IEEE Std. 603-1991, Clause 5.6.3.1(2), 'Isolation' states that no credible failure on the non-safety side of an isolation device shall prevent any portion of a safety system from meeting its minimum performance requirements during and following any design basis event requiring that safety function. The software CCF is one of the credible failure on the non-safety side. In advanced digital I and C system, same hardware component is used for different control system and the defect in manufacture or common external event can generate CCF. Moreover, the non-safety I and C system uses complex software for its various function and software quality assurance for the development process is less severe than safety software for the cost effective design. Therefore the potential defects in software cannot be ignored and the effect of software CCF on non-safety I and C system is needed to be evaluated. This paper proposes the general process and considerations for the analysis of CCF on non-safety I and C system.

Statistics of Shared Components in Complex Component Systems

Directory of Open Access Journals (Sweden)

Andrea Mazzolini

2018-04-01

Full Text Available Many complex systems are modular. Such systems can be represented as “component systems,” i.e., sets of elementary components, such as LEGO bricks in LEGO sets. The bricks found in a LEGO set reflect a target architecture, which can be built following a set-specific list of instructions. In other component systems, instead, the underlying functional design and constraints are not obvious a priori, and their detection is often a challenge of both scientific and practical importance, requiring a clear understanding of component statistics. Importantly, some quantitative invariants appear to be common to many component systems, most notably a common broad distribution of component abundances, which often resembles the well-known Zipf’s law. Such “laws” affect in a general and nontrivial way the component statistics, potentially hindering the identification of system-specific functional constraints or generative processes. Here, we specifically focus on the statistics of shared components, i.e., the distribution of the number of components shared by different system realizations, such as the common bricks found in different LEGO sets. To account for the effects of component heterogeneity, we consider a simple null model, which builds system realizations by random draws from a universe of possible components. Under general assumptions on abundance heterogeneity, we provide analytical estimates of component occurrence, which quantify exhaustively the statistics of shared components. Surprisingly, this simple null model can positively explain important features of empirical component-occurrence distributions obtained from large-scale data on bacterial genomes, LEGO sets, and book chapters. Specific architectural features and functional constraints can be detected from occurrence patterns as deviations from these null predictions, as we show for the illustrative case of the “core” genome in bacteria.

Assessment and Management of Ageing of Major Nuclear Power Plant Components Important to Safety: Steam Generators. 2011 Update

International Nuclear Information System (INIS)

2011-11-01

At present there are over four hundred forty operational nuclear power plants (NPPs) in IAEA Member States. Ageing degradation of the systems, structures of components during their operational life must be effectively managed to ensure the availability of design functions throughout the plant service life. From the safety perspective, this means controlling, within acceptable limits, the ageing degradation and wear-out of plant components important to safety so that adequate safety margins remain, i.e. integrity and functional capability in excess of normal operating requirements. This IAEA-TECDOC is one in a series of reports on the assessment and management of ageing of the major NPP components important to safety. The reports are based on experience and practices of NPP operators, regulators, designers, manufacturers, and technical support organizations. The current practices for the assessment of safety margins (fitness for service) and the inspection, monitoring and mitigation of ageing degradation of selected components of Canada deuteriumuranium (CANDU) reactor, boiling water reactor (BWR), pressurized water reactor (PWR), and water moderated, water cooled energy reactor (WWER) plants are documented in the reports. These practices are intended to help all involved directly and indirectly in ensuring the safe operation of NPPs, and also to provide a common technical basis for dialogue between plant operators and regulators when dealing with age related licensing issues. Since the reports are written from a safety perspective, they do not address life or life cycle management of the plant components, which involves the integration of ageing management and economic planning. The target audience of the reports consists of technical experts from NPPs and from regulatory, plant design, manufacturing and technical support organizations dealing with specific plant components addressed in the reports. The component addressed in the present publication is the steam

Systems Analysis of NASA Aviation Safety Program: Final Report

Science.gov (United States)

Jones, Sharon M.; Reveley, Mary S.; Withrow, Colleen A.; Evans, Joni K.; Barr, Lawrence; Leone, Karen

2013-01-01

A three-month study (February to April 2010) of the NASA Aviation Safety (AvSafe) program was conducted. This study comprised three components: (1) a statistical analysis of currently available civilian subsonic aircraft data from the National Transportation Safety Board (NTSB), the Federal Aviation Administration (FAA), and the Aviation Safety Information Analysis and Sharing (ASIAS) system to identify any significant or overlooked aviation safety issues; (2) a high-level qualitative identification of future safety risks, with an assessment of the potential impact of the NASA AvSafe research on the National Airspace System (NAS) based on these risks; and (3) a detailed, top-down analysis of the NASA AvSafe program using an established and peer-reviewed systems analysis methodology. The statistical analysis identified the top aviation "tall poles" based on NTSB accident and FAA incident data from 1997 to 2006. A separate examination of medical helicopter accidents in the United States was also conducted. Multiple external sources were used to develop a compilation of ten "tall poles" in future safety issues/risks. The top-down analysis of the AvSafe was conducted by using a modification of the Gibson methodology. Of the 17 challenging safety issues that were identified, 11 were directly addressed by the AvSafe program research portfolio.

Developing a patient-led electronic feedback system for quality and safety within Renal PatientView.

Science.gov (United States)

Giles, Sally J; Reynolds, Caroline; Heyhoe, Jane; Armitage, Gerry

2017-03-01

It is increasingly acknowledged that patients can provide direct feedback about the quality and safety of their care through patient reporting systems. The aim of this study was to explore the feasibility of patients, healthcare professionals and researchers working in partnership to develop a patient-led quality and safety feedback system within an existing electronic health record (EHR), known as Renal PatientView (RPV). Phase 1 (inception) involved focus groups (n = 9) and phase 2 (requirements) involved cognitive walkthroughs (n = 34) and 1:1 qualitative interviews (n = 34) with patients and healthcare professionals. A Joint Services Expert Panel (JSP) was convened to review the findings from phase 1 and agree the core principles and components of the system prototype. Phase 1 data were analysed using a thematic approach. Data from phase 1 were used to inform the design of the initial system prototype. Phase 2 data were analysed using the components of heuristic evaluation, resulting in a list of core principles and components for the final system prototype. Phase 1 identified four main barriers and facilitators to patients feeding back on quality and safety concerns. In phase 2, the JSP agreed that the system should be based on seven core principles and components. Stakeholders were able to work together to identify core principles and components for an electronic patient quality and safety feedback system in renal services. Tensions arose due to competing priorities, particularly around anonymity and feedback. Careful consideration should be given to the feasibility of integrating a novel element with differing priorities into an established system with existing functions and objectives. © 2016 European Dialysis and Transplant Nurses Association/European Renal Care Association.

A Nuclear Safety System based on Industrial Computer

International Nuclear Information System (INIS)

Kim, Ji Hyeon; Oh, Do Young; Lee, Nam Hoon; Kim, Chang Ho; Kim, Jae Hack

2011-01-01

The Plant Protection System(PPS), a nuclear safety Instrumentation and Control (I and C) system for Nuclear Power Plants(NPPs), generates reactor trip on abnormal reactor condition. The Core Protection Calculator System (CPCS) is a safety system that generates and transmits the channel trip signal to the PPS on an abnormal condition. Currently, these systems are designed on the Programmable Logic Controller(PLC) based system and it is necessary to consider a new system platform to adapt simpler system configuration and improved software development process. The CPCS was the first implementation using a micro computer in a nuclear power plant safety protection system in 1980 which have been deployed in Ulchin units 3,4,5,6 and Younggwang units 3,4,5,6. The CPCS software was developed in the Concurrent Micro5 minicomputer using assembly language and embedded into the Concurrent 3205 computer. Following the micro computer based CPCS, PLC based Common-Q platform has been used for the ShinKori/ShinWolsong units 1,2 PPS and CPCS, and the POSAFE-Q PLC platform is used for the ShinUlchin units 1,2 PPS and CPCS. In developing the next generation safety system platform, several factors (e.g., hardware/software reliability, flexibility, licensibility and industrial support) can be considered. This paper suggests an Industrial Computer(IC) based protection system that can be developed with improved flexibility without losing system reliability. The IC based system has the advantage of a simple system configuration with optimized processor boards because of improved processor performance and unlimited interoperability between the target system and development system that use commercial CASE tools. This paper presents the background to selecting the IC based system with a case study design of the CPCS. Eventually, this kind of platform can be used for nuclear power plant safety systems like the PPS, CPCS, Qualified Indication and Alarm . Pami(QIAS-P), and Engineering Safety

A Nuclear Safety System based on Industrial Computer

Energy Technology Data Exchange (ETDEWEB)

Kim, Ji Hyeon; Oh, Do Young; Lee, Nam Hoon; Kim, Chang Ho; Kim, Jae Hack [Korea Electric Power Corporation Engineering and Construction, Daejeon (Korea, Republic of)

2011-05-15

The Plant Protection System(PPS), a nuclear safety Instrumentation and Control (I and C) system for Nuclear Power Plants(NPPs), generates reactor trip on abnormal reactor condition. The Core Protection Calculator System (CPCS) is a safety system that generates and transmits the channel trip signal to the PPS on an abnormal condition. Currently, these systems are designed on the Programmable Logic Controller(PLC) based system and it is necessary to consider a new system platform to adapt simpler system configuration and improved software development process. The CPCS was the first implementation using a micro computer in a nuclear power plant safety protection system in 1980 which have been deployed in Ulchin units 3,4,5,6 and Younggwang units 3,4,5,6. The CPCS software was developed in the Concurrent Micro5 minicomputer using assembly language and embedded into the Concurrent 3205 computer. Following the micro computer based CPCS, PLC based Common-Q platform has been used for the ShinKori/ShinWolsong units 1,2 PPS and CPCS, and the POSAFE-Q PLC platform is used for the ShinUlchin units 1,2 PPS and CPCS. In developing the next generation safety system platform, several factors (e.g., hardware/software reliability, flexibility, licensibility and industrial support) can be considered. This paper suggests an Industrial Computer(IC) based protection system that can be developed with improved flexibility without losing system reliability. The IC based system has the advantage of a simple system configuration with optimized processor boards because of improved processor performance and unlimited interoperability between the target system and development system that use commercial CASE tools. This paper presents the background to selecting the IC based system with a case study design of the CPCS. Eventually, this kind of platform can be used for nuclear power plant safety systems like the PPS, CPCS, Qualified Indication and Alarm . Pami(QIAS-P), and Engineering Safety

Replacement cross-site transfer system project W-058 safety class upgrade summary report

International Nuclear Information System (INIS)

Schlosser, R.L.

1998-01-01

This report evaluates the design of the replacement cross-site transfer system structures, systems, and components for safety related applications as defined in the Tank Waste Remediation Systems Basis for Interim Operations

Reactor safety systems

International Nuclear Information System (INIS)

Kafka, P.

1975-01-01

The spectrum of possible accidents may become characterized by the 'maximum credible accident', which will/will not happen. Similary, the performance of safety systems in a multitude of situations is sometimes simplified to 'the emergency system will/will not work' or even 'reactors are/ are not safe'. In assessing safety, one must avoid this fallacy of reducing a complicated situation to the simple black-and-white picture of yes/no. Similarly, there is a natural tendency continually to improve the safety of a system to assure that it is 'safe enough'. Any system can be made safer and there is usually some additional cost. It is important to balance the increased safety against the increased costs. (orig.) [de

Developing an OMERACT Core Outcome Set for Assessing Safety Components in Rheumatology Trials: The OMERACT Safety Working Group.

Science.gov (United States)

Klokker, Louise; Tugwell, Peter; Furst, Daniel E; Devoe, Dan; Williamson, Paula; Terwee, Caroline B; Suarez-Almazor, Maria E; Strand, Vibeke; Woodworth, Thasia; Leong, Amye L; Goel, Niti; Boers, Maarten; Brooks, Peter M; Simon, Lee S; Christensen, Robin

2017-12-01

Failure to report harmful outcomes in clinical research can introduce bias favoring a potentially harmful intervention. While core outcome sets (COS) are available for benefits in randomized controlled trials in many rheumatic conditions, less attention has been paid to safety in such COS. The Outcome Measures in Rheumatology (OMERACT) Filter 2.0 emphasizes the importance of measuring harms. The Safety Working Group was reestablished at the OMERACT 2016 with the objective to develop a COS for assessing safety components in trials across rheumatologic conditions. The safety issue has previously been discussed at OMERACT, but without a consistent approach to ensure harms were included in COS. Our methods include (1) identifying harmful outcomes in trials of interventions studied in patients with rheumatic diseases by a systematic literature review, (2) identifying components of safety that should be measured in such trials by use of a patient-driven approach including qualitative data collection and statistical organization of data, and (3) developing a COS through consensus processes including everyone involved. Members of OMERACT including patients, clinicians, researchers, methodologists, and industry representatives reached consensus on the need to continue the efforts on developing a COS for safety in rheumatology trials. There was a general agreement about the need to identify safety-related outcomes that are meaningful to patients, framed in terms that patients consider relevant so that they will be able to make informed decisions. The OMERACT Safety Working Group will advance the work previously done within OMERACT using a new patient-driven approach.

Status of the EU test blanket systems safety studies

International Nuclear Information System (INIS)

Panayotov, Dobromir; Poitevin, Yves; Ricapito, Italo; Zmitko, Milan

2015-01-01

Highlights: • TBS safety demonstration files. • Safety functions and related design features – detailed TBS components classifications. • Nuclear analyses, radiation shielding and protection. • TBS radiological waste management strategy and categorization. • Selection and definition of reference accidents scenarios and accidents analyses. - Abstract: The European joint undertaking for ITER and the development of fusion energy (‘Fusion for Energy’ – F4E) provides the European contributions to the ITER international fusion energy research project. Among others it includes also the development, design, technological demonstration and implementation of the European test blanket systems (TBS) in ITER. Currently two EU TBS designs are in the phase of conceptual design – helium-cooled lithium-lead (HCLL) and helium-cooled pebble-bed (HCPB). Safety demonstration is an important part of the work devoted to the achievement of the next key project milestone the conceptual design review. The paper reveals the details of the work on EU TBS safety performed in the last couple of years: update of the TBS safety demonstration files; safety functions and related design features; detailed TBS components classifications; nuclear analyses, radiation shielding and protection; TBS radiological waste management strategy and categorization; selection and definition of reference accidents scenarios, and accidents analyses. Finally the authors share the information on on-going and planned future EU TBS safety activities.

Status of the EU test blanket systems safety studies

Energy Technology Data Exchange (ETDEWEB)

Panayotov, Dobromir, E-mail: dobromir.panayotov@f4e.europa.eu; Poitevin, Yves; Ricapito, Italo; Zmitko, Milan

2015-10-15

Highlights: • TBS safety demonstration files. • Safety functions and related design features – detailed TBS components classifications. • Nuclear analyses, radiation shielding and protection. • TBS radiological waste management strategy and categorization. • Selection and definition of reference accidents scenarios and accidents analyses. - Abstract: The European joint undertaking for ITER and the development of fusion energy (‘Fusion for Energy’ – F4E) provides the European contributions to the ITER international fusion energy research project. Among others it includes also the development, design, technological demonstration and implementation of the European test blanket systems (TBS) in ITER. Currently two EU TBS designs are in the phase of conceptual design – helium-cooled lithium-lead (HCLL) and helium-cooled pebble-bed (HCPB). Safety demonstration is an important part of the work devoted to the achievement of the next key project milestone the conceptual design review. The paper reveals the details of the work on EU TBS safety performed in the last couple of years: update of the TBS safety demonstration files; safety functions and related design features; detailed TBS components classifications; nuclear analyses, radiation shielding and protection; TBS radiological waste management strategy and categorization; selection and definition of reference accidents scenarios, and accidents analyses. Finally the authors share the information on on-going and planned future EU TBS safety activities.

Nuclear Reactor RA Safety Report, Vol. 14, Safety protection measures

International Nuclear Information System (INIS)

1986-11-01

Nuclear reactor accidents can be caused by three type of errors: failure of reactor components including (1) control and measuring instrumentation, (2) errors in operation procedure, (3) natural disasters. Safety during reactor operation are secured during its design and construction and later during operation. Both construction and administrative procedures are applied to attain safe operation. Technical safety features include fission product barriers, fuel elements cladding, primary reactor components (reactor vessel, primary cooling pipes, heat exchanger in the pump), reactor building. Safety system is the system for safe reactor shutdown and auxiliary safety system. RA reactor operating regulations and instructions are administrative acts applied to avoid possible human error caused accidents [sr

Design Information from the PSA for Digital Safety-Critical Systems

International Nuclear Information System (INIS)

Kang, Hyun Gook; Jang, Seung Cheol

2005-01-01

Many safety-critical applications such as nuclear field application usually adopt a similar design strategy for digital safety-critical systems. Their differences from the normal design for the non-safety-critical applications could be summarized as: multiple-redundancy, highly reliable components, strengthened monitoring mechanism, verified software, and automated test procedure. These items are focusing on maintaining the capability to perform the given safety function when it is requested. For the past several decades, probabilistic safety assessment (PSA) techniques are used in the nuclear industry to assess the relative effects of contributing events on plant risk and system reliability. They provide a unifying means of assessing physical faults, recovery processes, contributing effects, human actions, and other events that have a high degree of uncertainty. The applications of PSA provide not only the analysis results of already installed system but also the useful information for the system under design. The information could be derived from the PSA experience of the various safety-critical systems. Thanks to the design flexibility, the digital system is one of the most suitable candidates for risk-informed design (RID). In this article, we will describe the feedbacks for system design and try to develop a procedure for RID. Even though the procedure is not sophisticated enough now, it could be the start point of the further investigation for developing more complete and practical methodology

Research on advanced system safety assessment procedures (III)

International Nuclear Information System (INIS)

Suzuki, Kazuhiko; Shimada, Yukiyasu

2000-03-01

Though HAZOP is recognized as the useful safety assessment method, it requires a labor-intensive and time-consuming process. So recently computer-aided HAZOP has been proposed. The research report in 1999 (PNC TJ1400 99-003) presented HAZOP system based on the plant component malfunctions basic models. By using this basic model, not only state malfunction of component but also the consequence to external circumstance can be assessed. G2, which is an excellent object-oriented developer tool in GUI (Graphical User Interface), was used as a tool for developing the system. By using the graphical editor in the system, the user can carry out HAZOP easily. The purpose of this research is to improve the ability of the HAZOP system to obtain a more detailed HAZOP results. HAZOP is carried out according to the fault propagation of component level and the one of plant level based on plant component malfunctions basic models. Furthermore, the HAZOP system which can do the cause and effect analysis in detail intended for the component which processes two or more materials is developed. It is possible to carry out HAZOP for various plants by newly adding material information to the knowledge base. We have applied this system to the Nuclear Reprocessing Facilities to demonstrate the utilities of developing system. (author)

The qualification of electrical components and instrumentations relevant to safety; La qualificazione dei componenti elettrici e di strumentazione rilevanti per la sicurezza

Energy Technology Data Exchange (ETDEWEB)

Zambardi, F [ENEA - Direzione Sicurezza Nucleare e Protezione Sanitaria, Divisione Sistemi Elettrici e Strumentazione, Rome (Italy)

1989-03-15

Systems and components relevant to safety of nuclear power plants must maintain their functional integrity in order to assure accident prevention and mitigation. Redundancy is utilized against random failures, nevertheless care must be taken to avoid common failures in redundant components. Main sources of degradation and common cause failures consist in the aging effects and in the changes of environmental conditions which occur during the plant life and the postulated accidents. These causes of degradation are expected to be especially significant for instrumentation and electrical equipment, which can have a primary role in safety systems. The qualification is the methodology by which component safety requirements can be met against the above mentioned causes of degradation. In this report the connection between the possible, plant conditions and the resulting degradation effects on components is preliminarily addressed. A general characterization of the qualification is then presented. Basis, methods and peculiar aspects are discussed and the qualification by testing is taken into special account. Technical and organizational aspects related to a plant qualification program are also focused. The report ends with a look to the most significant research and development activities. (author)

2-component heating systems

Energy Technology Data Exchange (ETDEWEB)

Radtke, W

1987-03-01

The knowledge accumulated only recently of the damage to buildings and the hazards of formaldehyde, radon and hydrocarbons has been inducing louder calls for ventilation, which, on their part, account for the fact that increasing importance is being attached to the controlled ventilation of buildings. Two-component heating systems provide for fresh air and thermal comfort in one. While the first component uses fresh air blown directly and controllably into the rooms, the second component is similar to the Roman hypocaustic heating systems, meaning that heated outer air is circulating under the floor, thus providing for hot surfaces and thermal comfort. Details concerning the two-component heating system are presented along with systems diagrams, diagrams of the heating system and tables identifying the respective costs. Descriptions are given of the two systems components, the fast heat-up, the two-component made, the change of air, heat recovery and control systems. Comparative evaluations determine the differences between two-component heating systems and other heating systems. Conclusive remarks are dedicated to energy conservation and comparative evaluations of costs. (HWJ).

Software qualification for digital safety system in KNICS project

International Nuclear Information System (INIS)

Kwon, Kee-Choon; Lee, Dong-Young; Choi, Jong-Gyun

2012-01-01

In order to achieve technical self-reliance in the area of nuclear instrumentation and control, the Korea Nuclear Instrumentation and Control System (KNICS) project had been running for seven years from 2001. The safety-grade Programmable Logic Controller (PLC) and the digital safety system were developed by KNICS project. All the software of the PLC and digital safety system were developed and verified following the software development life cycle Verification and Validation (V and V) procedure. The main activities of the V and V process are preparation of software planning documentations, verification of the Software Requirement Specification (SRS), Software Design Specification (SDS) and codes, and a testing of the software components, the integrated software, and the integrated system. In addition, a software safety analysis and a software configuration management are included in the activities. For the software safety analysis at the SRS and SDS phases, the software Hazard Operability (HAZOP) was performed and then the software fault tree analysis was applied. The software fault tree analysis was applied to a part of software module with some critical defects identified by the software HAZOP in SDS phase. The software configuration management was performed using the in-house tool developed in the KNICS project. (author)

Supervision of electrical and instrumentation systems and components at nuclear facilities

International Nuclear Information System (INIS)

1986-01-01

The general guidelines for the supervision of nuclear facilities carried out by the Finnish Centre for Radiation and Nuclear Safety (STUK) are set forth in the guide YVL 1.1. This guide shows in more detail how STUK supervises the electrical and instrumentation systems and components of nuclear facilities

Design and hardware alternatives for a Safety-Parameter Display System

International Nuclear Information System (INIS)

Honeycutt, F.; Merten, W.T.; Roy, G.M.; Segraves, E.; Stone, G.P.

1981-05-01

The SPDS is a dedicated control room operator aid and is viewed as an important safety improvement within the context of other post-TMI fixes. Hardware configurations and components to implement the NSAC display format of a Safety Parameter Display System (SPDS) are evaluated. The evaluation was made on the basis of five alternative hardware configurations which use commercially available components. Four of the alternatives use computer/video display architecture. The fifth alternative is a simple hardwired system which uses strip chart recorders. SPDS regulatory requirements are defined by NUREG 0696. Overall feasibility of the NSAC concept was evaluated in terms of performance, reliability, cost, licensability, and flexibility. The flexibility evaluation relates to the ability to handle other display formats, the data acquisition needs of the other emergency facilities and the impact of expected future NRC requirements

Guidelines for implementation of RCM on safety systems

International Nuclear Information System (INIS)

Kim, Tae Woon; Brijendra Singh.

1996-04-01

Reliability Centered Maintenance (RCM) methodology was originally developed by the commercial airlines industry in the early 1960s for identifying applicable and effective preventive maintenance tasks and as currently used in nuclear power industry. Effective maintenance of the systems at a nuclear power plant (NPP) is essential for its safe and reliable operation. Reliability Centered Maintenance at NPP is the program to assure that plant systems remain within an original design criteria and are not adversely affected during the plant life time. The aim of this report is to provide the guidelines to implement the RCM approach on NPP safety systems. Safety systems are usually standby and therefore, we need to periodically detect and repair failures that may have occurred since the previous activation or inspection the equipment. The RCM guidelines are intended to help identify the failure modes and related root causes and then decide the maintenance policies to achieve the high level of safety and reliability. The RCM is intended to improve or maintain high levels of system reliability and plant availability. Since the reliability of plant systems will be improved, the plant safety correspondingly will be increased. Another goal of RCM is to optimize the maintenance and surveillance tasks such that the overall level of resources required to accomplish essential tasks is kept to minimum. RCM also strives to eliminate unnecessary corrective maintenance and to select yet most cost-effective approach to maintenance, testing and inspection for system components. 9 refs. (Author) .new

Improved Management of Part Safety Classification System for Nuclear Power Plant

Energy Technology Data Exchange (ETDEWEB)

Park, Jin Young; Park, Youn Won; Park, Heung Gyu; Park, Hyo Chan [BEES Inc., Daejeon (Korea, Republic of)

2016-10-15

As, in recent years, many quality assurance (QA) related incidents, such as falsely-certified parts and forged documentation, etc., were reported in association with the supply of structures, systems, components and parts to nuclear power plants, a need for a better management of safety classification system was addressed so that it would be based more on the level of parts . Presently, the Korean nuclear power plants do not develop and apply relevant procedures for safety classifications, but rather the safety classes of parts are determined solely based on the experience of equipment designers. So proposed in this paper is a better management plan for safety equipment classification system with an aim to strengthen the quality management for parts. The plan was developed through the analysis of newly introduced technical criteria to be applied to parts of nuclear power plant.

Safety analyses for transient behavior of plasma and in-vessel components during plasma abnormal events in fusion reactor

International Nuclear Information System (INIS)

Honda, Takuro; Okazaki, Takashi; Bartels, H.W.; Uckan, N.A.; Seki, Yasushi.

1997-01-01

Safety analyses on plasma abnormal events have been performed using a hybrid code of a plasma dynamics model and a heat transfer model of in-vessel components. Several abnormal events, e.g., increase in fueling rate, were selected for the International Thermonuclear Experimental Reactor (ITER) and transient behavior of the plasma and the invessel components during the events was analyzed. The physics model for safety analysis was conservatively prepared. In most cases, the plasma is terminated by a disruption or it returns to the original operation point. When the energy confinement improves by a factor of 2.0 in the steady state, which is a hypothetical assumption under the present plasma data, the maximum fusion power reaches about 3.3 GW at about 3.6 s and the plasma is terminated due to a disruption. However, the results obtained in this study show the confinement boundary of ITER can be kept almost intact during the abnormal plasma transients, as long as the cooling system works normally. Several parametric studies are needed to comprehend the overpower transient including structure behavior, since many uncertainties are connected to the filed of the plasma physics. And, future work will need to discuss the burn control scenario considering confinement mode transition, system specifications, experimental plans and safety regulations, etc. to confirm the safety related to the plasma anomaly. (author)

Air-conditioning and ventilation systems and components of nuclear facilities

International Nuclear Information System (INIS)

2006-01-01

The Guide defines the requirements for the design, implementation and operation of the air-conditioning and ventilation systems of nuclear facilities belonging to safety classes 3 and 4, and for the related documents to be submitted to STUK (Radiation and Nuclear Safety Authority, Finland). Furthermore, the Guide describes the inspections of air-conditioning and ventilation systems to be conducted by STUK during construction and operation of the facilities. As far as systems and components belonging to safety class 2 are concerned, STUK sets additional requirements case by case. In general, air-conditioning systems refer to systems designed to manage the indoor air cleanness, temperature, humidity and movement. In some rooms of a nuclear power plant, ventilation systems are also used to prevent radioactive materials from spreading outside the rooms. Guide YVL1.0 defines the safety principles concerning the air-conditioning and ventilation of nuclear power plants. Guide YVL2.0 gives the requirements for the design of nuclear power plant systems. In addition, YVLGuide groups 3, 4, 5 and 7 deal with the requirements for air-conditioning and ventilation systems with regard to the mechanical equipment, fire prevention, electrical systems, instrumentation and control technology, and the restriction of releases. The rules and regulations issued by the Ministry of the Environment and the Ministry of the Interior (RakMK, the Finnish building code) concerning the design and operation of air-conditioning and ventilation systems and the related fire protection design bases also apply to nuclear facilities. Exhaust gas treatment systems, condenser vacuum systems of boiling water reactor plants and leak collection systems are excluded from the scope of this Guide

MODELS AND METHODS OF SAFETY-ORIENTED PROJECT MANAGEMENT OF DEVELOPMENT OF COMPLEX SYSTEMS: METHODOLOGICAL APPROACH

Directory of Open Access Journals (Sweden)

Олег Богданович ЗАЧКО

2016-03-01

Full Text Available The methods and models of safety-oriented project management of the development of complex systems are proposed resulting from the convergence of existing approaches in project management in contrast to the mechanism of value-oriented management. A cognitive model of safety oriented project management of the development of complex systems is developed, which provides a synergistic effect that is to move the system from the original (pre condition in an optimal one from the viewpoint of life safety - post-project state. The approach of assessment the project complexity is proposed, which consists in taking into account the seasonal component of a time characteristic of life cycles of complex organizational and technical systems with occupancy. This enabled to take into account the seasonal component in simulation models of life cycle of the product operation in complex organizational and technical system, modeling the critical points of operation of systems with occupancy, which forms a new methodology for safety-oriented management of projects, programs and portfolios of projects with the formalization of the elements of complexity.

Safety system status monitoring

International Nuclear Information System (INIS)

Lewis, J.R.; Morgenstern, M.H.; Rideout, T.H.; Cowley, P.J.

1984-03-01

The Pacific Northwest Laboratory has studied the safety aspects of monitoring the preoperational status of safety systems in nuclear power plants. The goals of the study were to assess for the NRC the effectiveness of current monitoring systems and procedures, to develop near-term guidelines for reducing human errors associated with monitoring safety system status, and to recommend a regulatory position on this issue. A review of safety system status monitoring practices indicated that current systems and procedures do not adequately aid control room operators in monitoring safety system status. This is true even of some systems and procedures installed to meet existing regulatory guidelines (Regulatory Guide 1.47). In consequence, this report suggests acceptance criteria for meeting the functional requirements of an adequate system for monitoring safety system status. Also suggested are near-term guidelines that could reduce the likelihood of human errors in specific, high-priority status monitoring tasks. It is recommended that (1) Regulatory Guide 1.47 be revised to address these acceptance criteria, and (2) the revised Regulatory Guide 1.47 be applied to all plants, including those built since the issuance of the original Regulatory Guide

Safety system status monitoring

Energy Technology Data Exchange (ETDEWEB)

Lewis, J.R.; Morgenstern, M.H.; Rideout, T.H.; Cowley, P.J.

1984-03-01

The Pacific Northwest Laboratory has studied the safety aspects of monitoring the preoperational status of safety systems in nuclear power plants. The goals of the study were to assess for the NRC the effectiveness of current monitoring systems and procedures, to develop near-term guidelines for reducing human errors associated with monitoring safety system status, and to recommend a regulatory position on this issue. A review of safety system status monitoring practices indicated that current systems and procedures do not adequately aid control room operators in monitoring safety system status. This is true even of some systems and procedures installed to meet existing regulatory guidelines (Regulatory Guide 1.47). In consequence, this report suggests acceptance criteria for meeting the functional requirements of an adequate system for monitoring safety system status. Also suggested are near-term guidelines that could reduce the likelihood of human errors in specific, high-priority status monitoring tasks. It is recommended that (1) Regulatory Guide 1.47 be revised to address these acceptance criteria, and (2) the revised Regulatory Guide 1.47 be applied to all plants, including those built since the issuance of the original Regulatory Guide.

Nuclear plant reliability data system. 1979 annual reports of cumulative system and component reliability

International Nuclear Information System (INIS)

1979-01-01

The primary purposes of the information in these reports are the following: to provide operating statistics of safety-related systems within a unit which may be used to compare and evaluate reliability performance and to provide failure mode and failure rate statistics on components which may be used in failure mode effects analysis, fault hazard analysis, probabilistic reliability analysis, and so forth

Traceability of Software Safety Requirements in Legacy Safety Critical Systems

Science.gov (United States)

Hill, Janice L.

2007-01-01

How can traceability of software safety requirements be created for legacy safety critical systems? Requirements in safety standards are imposed most times during contract negotiations. On the other hand, there are instances where safety standards are levied on legacy safety critical systems, some of which may be considered for reuse for new applications. Safety standards often specify that software development documentation include process-oriented and technical safety requirements, and also require that system and software safety analyses are performed supporting technical safety requirements implementation. So what can be done if the requisite documents for establishing and maintaining safety requirements traceability are not available?

A study on the establishment of safety assessment guidelines of commercial grade item dedication in digitalized safety systems

International Nuclear Information System (INIS)

Hwang, H. S.; Kim, B. R.; Oh, S. H.

1999-01-01

Because of obsolescing the components used in safety related systems of nuclear power plants, decreasing the number of suppliers qualified for the nuclear QA program and increasing maintenance costs of them, utilities have been considering to use commercial grade digital computers as an alternative for resolving such issues. However, commercial digital computers use the embedded pre-existing software, including operating system software, which are not developed by using nuclear grade QA program. Thus, it is necessary for utilities to establish processes for dedicating digital commercial grade items. A regulatory body also needs guidance to evaluate the digital commercial products properly. This paper surveyed the regulations and their regulatory guides, which establish the requirements for commercial grade items dedication, industry standards and guidances applicable to safety related systems. This paper provides some guidelines to be applied in evaluating the safety of digital upgrades and new digital plant protection systems in Korea

Safety-I, Safety-II and Resilience Engineering.

Science.gov (United States)

Patterson, Mary; Deutsch, Ellen S

2015-12-01

In the quest to continually improve the health care delivered to patients, it is important to understand "what went wrong," also known as Safety-I, when there are undesired outcomes, but it is also important to understand, and optimize "what went right," also known as Safety-II. The difference between Safety-I and Safety-II are philosophical as well as pragmatic. Improving health care delivery involves understanding that health care delivery is a complex adaptive system; components of that system impact, and are impacted by, the actions of other components of the system. Challenges to optimal care include regular, irregular and unexampled threats. This article addresses the dangers of brittleness and miscalibration, as well as the value of adaptive capacity and margin. These qualities can, respectively, detract from or contribute to the emergence of organizational resilience. Resilience is characterized by the ability to monitor, react, anticipate, and learn. Finally, this article celebrates the importance of humans, who make use of system capabilities and proactively mitigate the effects of system limitations to contribute to successful outcomes. Copyright © 2015 Mosby, Inc. All rights reserved.

Safety design guide for safety related systems for CANDU 9

International Nuclear Information System (INIS)

Lee, Duk Su; Chang, Woo Hyun; Lee, Nam Young; A. C. D. Wright

1996-03-01

In general, two types of safety related systems and structures exist in the nuclear plant; The one is a systems and structures which perform safety functions during the normal operation of the plant, and the other is a systems and structures which perform safety functions to mitigate events caused by failure of the normally operating systems or by naturally occurring phenomena. In this safety design guide, these systems are identified in detail, and the major events for which the safety functions are required and the major safety requirements are identified in the list. As the probabilistic safety assessments are completed during the course of the project, additions or deletions to the list may be justified. 3 tabs. (Author) .new

Safety design guide for safety related systems for CANDU 9

Energy Technology Data Exchange (ETDEWEB)

Lee, Duk Su; Chang, Woo Hyun; Lee, Nam Young [Korea Atomic Energy Research Institute, Daeduk (Korea, Republic of); Wright, A.C.D. [Atomic Energy of Canada Ltd., Toronto (Canada)

1996-03-01

In general, two types of safety related systems and structures exist in the nuclear plant; The one is a systems and structures which perform safety functions during the normal operation of the plant, and the other is a systems and structures which perform safety functions to mitigate events caused by failure of the normally operating systems or by naturally occurring phenomena. In this safety design guide, these systems are identified in detail, and the major events for which the safety functions are required and the major safety requirements are identified in the list. As the probabilistic safety assessments are completed during the course of the project, additions or deletions to the list may be justified. 3 tabs. (Author) .new.

Performance Test Results of Safety I and C Systems of SMART MMIS

International Nuclear Information System (INIS)

Suh, Yong Suk; Keum, Jong Yong; Jeong, Kwang Il; Lee, Joon Ku; Lee, Sang Seok; Kim, Kwan Woong

2011-01-01

KAERI has developed SMART (System-integrated Modular Advanced ReacTor), a 330MWt integral pressurized light water reactor that integrates four reactor coolant pumps, one pressurizer, eight steam generators, and one reactor core into a reactor vessel, since 1997 and submitted a SSAR (Standard design Safety Analysis Report) to Korea institute of nuclear safety (KINS) at the end of 2010 for the purpose of achieving the standard design approval (SDA) by the end of 2011. SMART MMIS has been designed with fully digitalized systems. Non-safety instrumentation and control (I and C) systems are designed based on the commercial distributed control systems. The safety I and C systems are designed using a new platform that was developed and validated by KAERI. Safety I and C systems are modularized using the platform. In the protection systems (PSs), datalinks are used to transmit data in a one-way direction in order to meet the independency requirement. In the engineered safety features-component control system (ESF-CCS), network switch devices (NSDs) are used to connect the group and loop controllers. The NSD was also newly developed and validated by KAERI. After validating the platform and NSD, a test facility was developed using the platform and NSDs to validate the performance of safety I and C systems. This paper presents the development and test results from the test facility

Assessment of passive safety system of a Small Modular Reactor (SMR)

International Nuclear Information System (INIS)

Butt, Hassan Nawaz; Ilyas, Muhammad; Ahmad, Masroor; Aydogan, Fatih

2016-01-01

Highlights: • The MASLWR test facility has been modeled in RELAP5-SCDAP. The model is validated by comparing the simulation results with the experimental data. • Results obtained from various transients show that high pressure vent and sump recirculation lines provide natural circulation flow path for long term cooling of core. • New scenarios are considered in which the effect of vent and sump recirculation valves failure has been investigated. • It is found from the results that continuous loss of inventory occurs due to lack of recirculation. • It is concluded that the high pressure vent valves in the MASLWR safety system require more redundancy. - Abstract: Innovative SMRs are designed with enhanced safety features based on lessons learnt from past experience of plant operation. Reliance on natural circulation and addition of passive safety systems made them inherently safe and simple in design. It is required to study reliability assessment of passive safety systems during postulated transients prior to their deployment on commercial scale. Test facilities and best estimate system codes are playing significant role in assessment of passive safety systems as well as in design, certification and evaluation of these innovative types of reactors. RELAP5 code is widely used for thermal-hydraulic analysis of nuclear reactors. In this work, the passive safety systems of Multi-Application Small Light Water (MASLWR) have been assessed. The complete loop of the MASLWR test facility has been modeled in RELAP5-SCDAP Mod 4.0. The RELAP5 model is validated by comparing the simulation results with the experimental data. Results obtained for various transients show that high pressure vent and sump recirculation lines provide natural circulation flow path for long term cooling of core to avoid core heat up. Some of the components of passive safety system of MASLWR still rely on active power. Therefore, it was necessary to investigate their performance under failure

Regulatory instrument review: Management of aging of LWR [light water reactor] major safety-related components

International Nuclear Information System (INIS)

Werry, E.V.

1990-10-01

This report comprises Volume 1 of a review of US nuclear plant regulatory instruments to determine the amount and kind of information they contain on managing the aging of safety-related components in US nuclear power plants. The review was conducted for the US Nuclear Regulatory Commission (NRC) by the Pacific Northwest Laboratory (PNL) under the NRC Nuclear Plant Aging Research (NPAR) Program. Eight selected regulatory instruments, e.g., NRC Regulatory Guides and the Code of Federal Regulations, were reviewed for safety-related information on five selected components: reactor pressure vessels, steam generators, primary piping, pressurizers, and emergency diesel generators. Volume 2 will be concluded in FY 1991 and will also cover selected major safety-related components, e.g., pumps, valves and cables. The focus of the review was on 26 NPAR-defined safety-related aging issues, including examination, inspection, and maintenance and repair; excessive/harsh testing; and irradiation embrittlement. The major conclusion of the review is that safety-related regulatory instruments do provide implicit guidance for aging management, but include little explicit guidance. The major recommendation is that the instruments be revised or augmented to explicitly address the management of aging

Status of the safety certification process of the TRANSRAPID system

Energy Technology Data Exchange (ETDEWEB)

Blomerius, J [TUEV Rheinland, Koeln (Germany). Inst. fuer Software, Elektronik, Bahntechnik

1996-12-31

Since 20 years TUeV Rheinland is involved in safety certification of maglev technology of the TRANSRAPID type. The process applied is called PASC (Programm Accompanying Safety Certification). The paper reports on safety assessment of relevant subsystems and components (TR07, OCS, guideway components) as well as safety certification in the final program. (HW)

Assessment and management of ageing of major nuclear power plant components important to safety: CANDU reactor assemblies

International Nuclear Information System (INIS)

2001-02-01

At present, there are over four hundred operational nuclear power plants (NPPs) in IAEA Member States. Operating experience has shown that ineffective control of the ageing degradation of the major NPP components (e.g. caused by unanticipated phenomena and by operating, maintenance, design or manufacturing errors) can jeopardize plant safety and also plant life. Ageing in these NPPs must therefore be effectively managed to ensure the availability of design functions throughout the plant service life. From the safety perspective, this means controlling within acceptable limits the ageing degradation and wearout of plant components important to safety so that adequate safety margins remain, i.e. integrity and functional capability in excess of normal operating requirements. This TECDOC is one in a series of reports on the assessment and management of ageing of the major NPP components important to safety. The reports are based on experience and practices of NPP operators, regulators, designers, manufacturers, and technical support organizations and a widely accepted Methodology for the Management of Ageing of NPP Components Important to Safety which was issued by the IAEA in 1992. The current practices for the assessment of safety margins (fitness for service) and the inspection, monitoring, and mitigation of ageing degradation of selected components of Canada deuterium-uranium (CANDU) reactors, boiling water reactors (BWRs), pressurized water reactors (PWRs) including the Soviet designed water moderated and water cooled energy reactors (WWERs), are documented in the reports. These practices are intended to help all involved directly and indirectly in ensuring the safe operation of NPPs and also to provide a common technical basis for dialogue between plant operators and regulators when dealing with age-related licensing issues. Since the reports are written from a safety perspective, they do not address life or life-cycle management of the plant components, which

Assessment and Management of ageing of major nuclear power plant components important to safety: PWR pressure vessels

International Nuclear Information System (INIS)

1999-10-01

At present, there are over four hundred operational nuclear power plants (NPPs) in IAEA Member States. Operating experience has shown that ineffective control of the ageing degradation of the major NPP components (e.g., caused by unanticipated phenomena and by operating, maintenance or manufacturing errors) can jeopardize plant safety and also plant life. Ageing in these NPPs must be therefore effectively managed to ensure the availability of design functions throughout the plant service life. From the safety perspective, this means controlling within acceptable limits the ageing degradation and wear-out of plant components important to safety so that adequate safety margins remain, i.e. integrity and functional capability in excess of normal operating requirements. This TECDOC is one in a series of reports on the assessment and management of ageing of the major NPP components important to safety. The reports are based on experience and practices of NPP operators, regulators, designers, manufacturers and technical support organizations and a widely accepted Methodology for the Management of Ageing of NPP Components Important to Safety which was issued by the IAEA in 1992. The current practices for the assessment of safety margins (fitness-for-service) and the inspection, monitoring and mitigation of ageing degradation of selected components of Canada deuterium-uranium (CANDU) reactors, boiling water reactors (BWRs), pressurized water reactors (PWRs), including water moderated, water cooled energy reactors (WWERs) are documented in the reports. These practices are intended to help all involved directly and indirectly in ensuring the safe operation of NPPs; and also to provide a common technical basis for dialogue between plant operators and regulators when dealing with age related licensing issues. Since the reports are written from a safety perspective, they do not address life or life-cycle management of the plant components, which involves the integration of

Assessment and management of ageing of major nuclear power plant components important to safety: BWR pressure vessels

International Nuclear Information System (INIS)

2005-10-01

At present, there are over four hundred operational nuclear power plants (NPPs) in IAEA Member States. Operating experience has shown that ineffective control of the ageing degradation of the major NPP components (caused for instance by unanticipated phenomena and by operating, maintenance or manufacturing errors) can jeopardize plant safety and also plant life. Ageing in these NPPs must be therefore effectively managed to ensure the availability of design functions throughout the plant service life. From the safety perspective, this means controlling, within acceptable limits, the ageing degradation and wear out of plant components important to safety so that adequate safety margins remain, i.e. integrity and functional capability in excess of normal operating requirements. This TECDOC is one in a series of reports on the assessment and management of ageing of the major NPP components important to safety. The reports are based on experience and practices of NPP operators, regulators, designers, manufacturers and technical support organizations and a widely accepted Methodology for the Management of Ageing of NPP Components Important to Safety, which was issued by the IAEA in 1992. Since the reports are written from a safety perspective, they do not address life or life cycle management of plant components, which involves economic considerations. The current practices for the assessment of safety margins (fitness for service) and the inspection, monitoring and mitigation of ageing degradation of selected components of Canada deuterium-uranium (CANDU) reactors, boiling water reactors (BWRs), pressurized water reactors (PWRs), and water moderated, water cooled energy reactors (WWERs) are documented in the reports. These practices are intended to help all involved directly and indirectly in ensuring the safe operation of NPPs, and also to provide a common technical basis for dialogue between plant operators and regulators when dealing with age related licensing issues

IAEA Safety Standards on Management Systems and Safety Culture

International Nuclear Information System (INIS)

Persson, Kerstin Dahlgren

2007-01-01

The IAEA has developed a new set of Safety Standard for applying an integrated Management System for facilities and activities. The objective of the new Safety Standards is to define requirements and provide guidance for establishing, implementing, assessing and continually improving a Management System that integrates safety, health, environmental, security, quality and economic related elements to ensure that safety is properly taken into account in all the activities of an organization. With an integrated approach to management system it is also necessary to include the aspect of culture, where the organizational culture and safety culture is seen as crucial elements of the successful implementation of this management system and the attainment of all the goals and particularly the safety goals of the organization. The IAEA has developed a set of service aimed at assisting it's Member States in establishing. Implementing, assessing and continually improving an integrated management system. (author)

An intelligent hybrid system for surface coal mine safety analysis

Energy Technology Data Exchange (ETDEWEB)

Lilic, N.; Obradovic, I.; Cvjetic, A. [University of Belgrade, Belgrade (Serbia)

2010-06-15

Analysis of safety in surface coal mines represents a very complex process. Published studies on mine safety analysis are usually based on research related to accidents statistics and hazard identification with risk assessment within the mining industry. Discussion in this paper is focused on the application of AI methods in the analysis of safety in mining environment. Complexity of the subject matter requires a high level of expert knowledge and great experience. The solution was found in the creation of a hybrid system PROTECTOR, whose knowledge base represents a formalization of the expert knowledge in the mine safety field. The main goal of the system is the estimation of mining environment as one of the significant components of general safety state in a mine. This global goal is subdivided into a hierarchical structure of subgoals where each subgoal can be viewed as the estimation of a set of parameters (gas, dust, climate, noise, vibration, illumination, geotechnical hazard) which determine the general mine safety state and category of hazard in mining environment. Both the hybrid nature of the system and the possibilities it offers are illustrated through a case study using field data related to an existing Serbian surface coal mine.

Safety device and machine system of nuclear power plant

International Nuclear Information System (INIS)

1978-10-01

It introduces principle and kinds of heat power including heat balance and nuclear power. It explains a lot of technical terms about the nuclear power system, which are primary loop, reactor, steam generator, primary coolant pump and pressurizer in PWR, chemical and volume control system, component cooling system, safety injection system, and spent fuel cooling and storage system in auxiliary system, liquid solid and gaseous waste disposal system in radwaste disposal, gland sealing system, turbine instrumentation, turning gear, hydrogen cooling system, condenser, feedwater heater, degenerate heater, auxiliary heat exchanger, centrifugal pump, rotary reciprocating and tank and pressure vessel.

Research on communication system of underground safety management based on leaky feeder cable

Institute of Scientific and Technical Information of China (English)

CHEN Jian-hong; ZHANG Tao; CHENG Yun-cai; ZHANG Han

2007-01-01

According to the current working status of underground safety management and production scheduling, the importance and existed problem of underground mine radio communication were summarized, and the basic principle and classification of leaky feeder cable were introduced and the characteristics of cable were analyzed specifically in depth, and the application model of radio communication system for underground mine safety management was put forward. Meanwhile, the research explanation of the system component, function and evaluation was provided. The discussion result indicates that communication system of underground mine safety management which is integrated two-way relay amplifier and other equipment has many communication functions, and underground mine mobile communication can be achieved well.

Nuclear safety considerations with emphasis on instrumentation and control systems

International Nuclear Information System (INIS)

Beare, J.W.

1978-01-01

The conceptual model of a nuclear power plant in Canada is that it consists basically of two kinds of systems. The first kind is the process systems, that is, those structures and components associated with the production of nuclear energy and its conversion to other forms of energy. The second kind is the special safety systems, whose purpose it is to protect the public in the event of a serious failure in the process systems which might otherwise lead to unacceptable radiological consequences. Quantitative limits are set on the unavailability of the special safety systems. These limits are low enough to be consistent with low overall risk and yet can be demonstrated by test during operation of the plant. Low unavailability is an important but not the only condition required for low unrealiability for the special safety systems. The special safety systems minimize the chance of a cross-linked failure particularly under the conditions experienced as a result of the more severe types of postulated serious process failures. Nuclear power plants must also withstand, without a major hazard to the public, certain rare events associated with natural phenomena or man-made activities off-site and also certain in-plant events such as fire or break-up of a turbine-generator which might have a cross-linking effect on process and safety systems. In the latest designs, Canadian nuclear power plants have emergency systems to deal with such events. The emergency systems have an enhanced degree of physical and functional separation from other plant systems. (author)

A combined deterministic and probabilistic procedure for safety assessment of components with cracks - Handbook.

Energy Technology Data Exchange (ETDEWEB)

Dillstroem, Peter; Bergman, Mats; Brickstad, Bjoern; Weilin Zang; Sattari-Far, Iradj; Andersson, Peder; Sund, Goeran; Dahlberg, Lars; Nilsson, Fred (Inspecta Technology AB, Stockholm (Sweden))

2008-07-01

SSM has supported research work for the further development of a previously developed procedure/handbook (SKI Report 99:49) for assessment of detected cracks and tolerance for defect analysis. During the operative use of the handbook it was identified needs to update the deterministic part of the procedure and to introduce a new probabilistic flaw evaluation procedure. Another identified need was a better description of the theoretical basis to the computer program. The principal aim of the project has been to update the deterministic part of the recently developed procedure and to introduce a new probabilistic flaw evaluation procedure. Other objectives of the project have been to validate the conservatism of the procedure, make the procedure well defined and easy to use and make the handbook that documents the procedure as complete as possible. The procedure/handbook and computer program ProSACC, Probabilistic Safety Assessment of Components with Cracks, has been extensively revised within this project. The major differences compared to the last revision are within the following areas: It is now possible to deal with a combination of deterministic and probabilistic data. It is possible to include J-controlled stable crack growth. The appendices on material data to be used for nuclear applications and on residual stresses are revised. A new deterministic safety evaluation system is included. The conservatism in the method for evaluation of the secondary stresses for ductile materials is reduced. A new geometry, a circular bar with a circumferential surface crack has been introduced. The results of this project will be of use to SSM in safety assessments of components with cracks and in assessments of the interval between the inspections of components in nuclear power plants

Safety logic systems of PFBR

International Nuclear Information System (INIS)

Sambasivan, S. Ilango

2004-01-01

Full text : PFBR is provided with two independent, fast acting and diverse shutdown systems to detect any abnormalities and to initiate safety action. Each system consists of sensors, signal processing systems, logics, drive mechanisms and absorber rods. The absorber rods of the first system are Control and Safety Rods (CSR) and that of the second are called as Diverse Safety Rods (DSR). There are nine CSR and three DSR. While CSR are used for startup, control of reactor power, controlled shutdown and SCRAM, the DSR are used only for SCRAM. The respective drive mechanisms are called as CSRDM and DSRDM. Each of these two systems is capable of executing the shutdown satisfactorily with single failure criteria. Two independent safety logic systems based on diverse principles have been designed for the two shut down systems. The analog outputs of the sensors of Core Monitoring Systems comprising of reactor flux monitoring, core temperature monitoring, failed fuel detection and core flow monitoring systems are processed and converted into binary signals depending on their instantaneous values. Safety logic systems receive the binary signals from these core-monitoring systems and process them logically to protect the reactor against postulated initiating events. Neutronic and power to flow (P/Q) signals form the inputs to safety logic system-I and temperature signals are inputs to the safety logic system II. Failed fuel detection signals are processed by both the shut down systems. The two logic systems to actuate the safety rods are also based on two diverse designs and implemented with solid-state devices to meet all the requirements of safety systems. Safety logic system I that caters to neutronic and P/Q signals is designed around combinational logic and has an on-line test facility to detect struck at faults. The second logic system is based on dynamic logic and hence is inherently safe. This paper gives an overview of the two logic systems that have been

Exhaust, Dust Collection and Ventilation Systems. Module SH-44. Safety and Health.

Science.gov (United States)

Center for Occupational Research and Development, Inc., Waco, TX.

This student module on exhaust, dust collection, and ventilation systems is one of 50 modules concerned with job safety and health. This module discusses the types of contaminants that can be controlled by ventilation, the types of ventilation systems, and the component parts of local exhaust systems. Following the introduction, 10 objectives…

Assessing nuclear power plant safety and recovery from earthquakes using a system-of-systems approach

International Nuclear Information System (INIS)

Ferrario, E.; Zio, E.

2014-01-01

We adopt a ‘system-of-systems’ framework of analysis, previously presented by the authors, to include the interdependent infrastructures which support a critical plant in the study of its safety with respect to the occurrence of an earthquake. We extend the framework to consider the recovery of the system of systems in which the plant is embedded. As a test system, we consider the impacts produced on a nuclear power plant (the critical plant) embedded in the connected power and water distribution, and transportation networks which support its operation. The Seismic Probabilistic Risk Assessment of such system of systems is carried out by Hierarchical modeling and Monte Carlo simulation. First, we perform a top-down analysis through a hierarchical model to identify the elements that at each level have most influence in restoring safety, adopting the criticality importance measure as a quantitative indicator. Then, we evaluate by Monte Carlo simulation the probability that the nuclear power plant enters in an unsafe state and the time needed to recover its safety. The results obtained allow the identification of those elements most critical for the safety and recovery of the nuclear power plant; this is relevant for determining improvements of their structural/functional responses and supporting the decision-making process on safety critical-issues. On the test system considered, under the given assumptions, the components of the external and internal water systems (i.e., pumps and pool) turn out to be the most critical for the safety and recovery of the plant. - Highlights: • We adopt a system-of-system framework to analyze the safety of a critical plant exposed to risk from external events, considering also the interdependent infrastructures that support the plant. • We develop a hierarchical modeling framework to represent the system of systems, accounting also for its recovery. • Monte Carlo simulation is used for the quantitative evaluation of the

Reliability of thermal-hydraulic passive safety systems

International Nuclear Information System (INIS)

D'Auria, F.; Araneo, D.; Pierro, F.; Galassi, G.

2014-01-01

The scholar will be informed of reliability concepts applied to passive system adopted for nuclear reactors. Namely, for classical components and systems the failure concept is associated with malfunction of breaking of hardware. In the case of passive systems the failure is associated with phenomena. A method for studying the reliability of passive systems is discussed and is applied. The paper deals with the description of the REPAS (Reliability Evaluation of Passive Safety System) methodology developed by University of Pisa (UNIPI) and with results from its application. The general objective of the REPAS methodology is to characterize the performance of a passive system in order to increase the confidence toward its operation and to compare the performances of active and passive systems and the performances of different passive systems

Safety of mechanical devices. Safety of automation systems

International Nuclear Information System (INIS)

Pahl, G.; Schweizer, G.; Kapp, K.

1985-01-01

The paper deals with the classic procedures of safety engineering in the sectors mechanical engineering, electrical and energy engineering, construction and transport, medicine technology and process technology. Particular stress is laid on the safety of automation systems, control technology, protection of mechanical devices, reactor safety, mechanical constructions, transport systems, railway signalling devices, road traffic and protection at work in chemical plans. (DG) [de

Consideration of aging in probabilistic safety assessment

International Nuclear Information System (INIS)

Titina, B.; Cepin, M.

2007-01-01

Probabilistic safety assessment is a standardised tool for assessment of safety of nuclear power plants. It is a complement to the safety analyses. Standard probabilistic models of safety equipment assume component failure rate as a constant. Ageing of systems, structures and components can theoretically be included in new age-dependent probabilistic safety assessment, which generally causes the failure rate to be a function of age. New age-dependent probabilistic safety assessment models, which offer explicit calculation of the ageing effects, are developed. Several groups of components are considered which require their unique models: e.g. operating components e.g. stand-by components. The developed models on the component level are inserted into the models of the probabilistic safety assessment in order that the ageing effects are evaluated for complete systems. The preliminary results show that the lack of necessary data for consideration of ageing causes highly uncertain models and consequently the results. (author)

Assessment and management of ageing of major nuclear power plant components important to safety: PWR vessel internals

International Nuclear Information System (INIS)

1999-10-01

At present, there are over four hundred operational nuclear power plants (NPPs) in IAEA Member States. Operating experience has shown that ineffective control of the ageing degradation of the major NPP components (e.g. caused by unanticipated phenomena and by operating, maintenance or manufacturing errors) can jeopardize plant safety and also plant life. Ageing in these NPPs must be therefore effectively managed to ensure the availability of design functions throughout the plant service life. From the safety perspective, this means controlling within acceptable limits the ageing degradation and wear-out of plant components important to safety so that adequate safety margins remain, i.e. integrity and functional capability in excess of normal operating requirements. This TECDOC is one in a series of reports on the assessment and management of ageing of the major NPP components important to safety. The reports are based on experience and practices of NPP operators, regulators, designers, manufacturers, and technical support organizations and a widely accepted Methodology for the Management of Ageing of NPP Components Important to Safety, which was issued by the IAEA in 1992. The current practices for the assessment of safety margins (fitness-for-service) and the inspection, monitoring and mitigation of ageing degradation of selected components of Canada deuterium-uranium (CANDU) reactors, boiling water reactors (BWRs), pressurized water reactors (PWRs), and water moderated, water cooled energy reactors (WWERs) are documented in the reports. These practices are intended to help all involved directly and indirectly in ensuring the safe operation of NPPs, and to provide a common technical basis for dialogue between plant operators and regulators when dealing with age related licensing issues. The guidance reports are directed at technical experts from NPPs and from regulatory, plant design, manufacturing and technical support organizations dealing with specific plant

Environmental qualification - walkdowns: The documentation of configuration information for safety related components, equipment and systems

International Nuclear Information System (INIS)

Melmer, J.; Waters, M.

1995-01-01

Environmental Qualification walkdowns are conducted to collect field data to verify/validate/document configurations of safety related equipment and systems. This paper describes the process for conducting walkdowns and the justification for using an electronic format. The following are described: a) Background; b) Preparing, executing and processing walkdowns; c) Hardware/software; d) Impact of a paperless system on walkdown execution, maintenance and work planning; e) Other applications for the technology

Preliminary thermal-hydraulic and safety analysis of China DFLL-TBM system

Energy Technology Data Exchange (ETDEWEB)

Li, Wei [School of Nuclear Science and Technology, Xi’an Jiaotong University, No. 28, Xianning West Road, Xi’an, Shanxi 710049 (China); Tian, Wenxi, E-mail: wxtian@mail.xjtu.edu.cn [School of Nuclear Science and Technology, Xi’an Jiaotong University, No. 28, Xianning West Road, Xi’an, Shanxi 710049 (China); Qiu, Suizheng; Su, Guanghui; Jiao, Hong [School of Nuclear Science and Technology, Xi’an Jiaotong University, No. 28, Xianning West Road, Xi’an, Shanxi 710049 (China); Bai, Yunqing; Chen, Hongli [Institute of Nuclear Energy Safety Technology, Chinese Academy of Sciences, Hefei, Anhui 230031 (China); Wu, Yican, E-mail: yican.Wu@Fds.Org.Cn [Institute of Nuclear Energy Safety Technology, Chinese Academy of Sciences, Hefei, Anhui 230031 (China)

2013-06-15

Highlights: • Thermal-hydraulic and safety analysis on DFLL-TBM system is performed. • The TBM FW maximum temperature is 541 °C under steady state condition. • The TBM FW maximum temperature does not exceed the melt point of CLAM steel 1500 °C. • Neither the VV pressurization nor vault pressure build-up goes beyond 0.2 MPa. -- Abstract: China has proposed the dual-functional lithium-lead (DFLL) tritium breeding blanket concept for testing in ITER as a test blanket module (TBM), to demonstrate the technologies of tritium self-sufficiency, high-grade heat extraction and efficient electricity production which are needed for DEMO and fusion power plant. Safety assessment of the TBM and its auxiliary system should be conducted to deal with ITER safety issues directly caused by the TBM system failure during the design process. In this work, three potential initial events (PIEs) – in-vessel loss of helium (He) coolant and ex-vessel loss of He coolant and loss of flow without scram (LOFWS) – were analyzed for the TBM system with a modified version of the RELAP5/MOD3 code containing liquid lithium-lead eutectic (LiPb). The code also comprised an empirical expression for MHD pressure drop relevant to three-dimensional (3D) effect, the Lubarsky–Kaufman convective heat transfer correlation for LiPb flow and the Gnielinski convective heat transfer correlation for He flow. Since both LiPb and He serve as TBM coolants, the LiPb and He ancillary cooling systems were modeled to investigate the thermal-hydraulic characteristic of the TBM system and its influence on ITER safety under those accident conditions. The TBM components and the coolants flow within the TBM were simulated with one-dimensional heat structures and their associated hydrodynamic components. ITER enclosures including vacuum vessel (VV), port cell and TCWS vault were also covered in the model for accident analyses. Through this best estimate approach, the calculation indicated that the current

Safety case for the disposal of spent nuclear fuel at Olkiluoto. Description of the disposal system 2012

International Nuclear Information System (INIS)

2012-12-01

Description of the Disposal System sits within Posiva Oy's Safety Case 'TURVA-2012' report portfolio and has the objective presenting the initial state of the disposal system for the safety case for the disposal of spent nuclear fuel at Olkiluoto, Finland. Disposal system is an entity composed of a repository system and surface environment. The repository system includes the spent nuclear fuel, canister, buffer, backfill, and closure components as well as the host rock. The repository system components have assigned safety functions (except for the spent nuclear fuel) and are subject to requirements. The initial state is presented for each component, and references to the main supporting reports are given to guide the reader for more details. Conditions for each component vary in time and space, due to the time of emplacement and due to the tolerances set for the compositions, geometries and other properties depending on the component. The disposal operation is foreseen to commence ∼ 2020. At the beginning of the postclosure period, around 2120, all the engineered components have been installed and the operation is finalised. The system evolution during the operational phase is discussed in detail in Performance Assessment. The initial state for the host rock is defined to be essentially equal to the baseline conditions prior to starting the construction of the underground characterisation facility ONKALO. For the surface environment, the initial state is the present conditions prevailing. For any other component of the disposal system, the initial state is defined as the state it has when the direct control over that specific part of the system ceases and only limited information can be made available on the subsequent development of conditions in that part of the system or its near field. (orig.)

Safety case for the disposal of spent nuclear fuel at Olkiluoto. Description of the disposal system 2012

Energy Technology Data Exchange (ETDEWEB)

NONE

2012-12-15

Description of the Disposal System sits within Posiva Oy's Safety Case 'TURVA-2012' report portfolio and has the objective presenting the initial state of the disposal system for the safety case for the disposal of spent nuclear fuel at Olkiluoto, Finland. Disposal system is an entity composed of a repository system and surface environment. The repository system includes the spent nuclear fuel, canister, buffer, backfill, and closure components as well as the host rock. The repository system components have assigned safety functions (except for the spent nuclear fuel) and are subject to requirements. The initial state is presented for each component, and references to the main supporting reports are given to guide the reader for more details. Conditions for each component vary in time and space, due to the time of emplacement and due to the tolerances set for the compositions, geometries and other properties depending on the component. The disposal operation is foreseen to commence {approx} 2020. At the beginning of the postclosure period, around 2120, all the engineered components have been installed and the operation is finalised. The system evolution during the operational phase is discussed in detail in Performance Assessment. The initial state for the host rock is defined to be essentially equal to the baseline conditions prior to starting the construction of the underground characterisation facility ONKALO. For the surface environment, the initial state is the present conditions prevailing. For any other component of the disposal system, the initial state is defined as the state it has when the direct control over that specific part of the system ceases and only limited information can be made available on the subsequent development of conditions in that part of the system or its near field. (orig.)

Evaluating safety management system implementation

International Nuclear Information System (INIS)

Preuss, M.

2009-01-01

Canada is committed to not only maintaining, but also improving upon our record of having one of the safest aviation systems in the world. The development, implementation and maintenance of safety management systems is a significant step towards improving safety performance. Canada is considered a world leader in this area and we are fully engaged in implementation. By integrating risk management systems and business practices, the aviation industry stands to gain better safety performance with less regulatory intervention. These are important steps towards improving safety and enhancing the public's confidence in the safety of Canada's aviation system. (author)

The DYLAM approach to systems safety and reliability assessment

International Nuclear Information System (INIS)

Amendola, A.

1988-01-01

A survey of the principal features and applications of DYLAM (Dynamic Logical Analytical Methodology) is presented, whose basic principles can be summarized as follows: after a particular modelling of the component states, computerized heuristical procedures generate stochastic configurations of the system, whereas the resulting physical processes are simultaneously simulated to give account of the possible interactions between physics and states and, on the other hand, to search for system dangerous configurations and related probabilities. The association of probabilistic techniques for describing the states with physical equations for describing the process results in a very powerful tool for safety and reliability assessment of systems potentially subjected to dangerous incidental transients. A comprehensive picture of DYLAM capability for manifold applications can be obtained by the review of the study cases analyzed (LMFBR core accident, systems reliability assessment, accident simulation, man-machine interaction analysis, chemical reactors safety, etc.)

System Design and the Safety Basis

International Nuclear Information System (INIS)

Ellingson, Darrel

2008-01-01

The objective of this paper is to present the Bechtel Jacobs Company, LLC (BJC) Lessons Learned for system design as it relates to safety basis documentation. BJC has had to reconcile incomplete or outdated system description information with current facility safety basis for a number of situations in recent months. This paper has relevance in multiple topical areas including documented safety analysis, decontamination and decommissioning (D and D), safety basis (SB) implementation, safety and design integration, potential inadequacy of the safety analysis (PISA), technical safety requirements (TSR), and unreviewed safety questions. BJC learned that nuclear safety compliance relies on adequate and well documented system design information. A number of PIS As and TSR violations occurred due to inadequate or erroneous system design information. As a corrective action, BJC assessed the occurrences caused by systems design-safety basis interface problems. Safety systems reviewed included the Molten Salt Reactor Experiment (MSRE) Fluorination System, K-1065 fire alarm system, and the K-25 Radiation Criticality Accident Alarm System. The conclusion was that an inadequate knowledge of system design could result in continuous non-compliance issues relating to nuclear safety. This was especially true with older facilities that lacked current as-built drawings coupled with the loss of 'historical knowledge' as personnel retired or moved on in their careers. Walkdown of systems and the updating of drawings are imperative for nuclear safety compliance. System design integration with safety basis has relevance in the Department of Energy (DOE) complex. This paper presents the BJC Lessons Learned in this area. It will be of benefit to DOE contractors that manage and operate an aging population of nuclear facilities

Seismic safety margin assessment program (Annual safety research report, JFY 2010)

International Nuclear Information System (INIS)

Suzuki, Kenichi; Iijima, Toru; Inagaki, Masakatsu; Taoka, Hideto; Hidaka, Shinjiro

2011-01-01

Seismic capacity test data, analysis method and evaluation code provided by Seismic Safety Margin Assessment Program have been utilized for the support of seismic back-check evaluation of existing plants. The summary of the program in 2010 is as follows. 1. Component seismic capacity test and quantitative seismic capacity evaluation. Many seismic capacity tests of various snubbers were conducted and quantitative seismic capacities were evaluated. One of the emergency diesel generator partial-model seismic capacity tests was conducted and quantitative seismic capacity was evaluated. Some of the analytical evaluations of piping-system seismic capacities were conducted. 2. Analysis method for minute evaluation of component seismic response. The difference of seismic response of large components such as primary containment vessel and reactor pressure vessel when they were coupled with 3-dimensional FEM building model or 1-dimensional lumped mass building model, was quantitatively evaluated. 3. Evaluation code for quantitative evaluation of seismic safety margin of systems, structures and components. As the example, quantitative evaluation of seismic safety margin of systems, structures and components were conducted for the reference plant. (author)

Preliminary Performance Analysis Program Development for Safety System with Safeguard Vessel

International Nuclear Information System (INIS)

Kang, Han-Ok; Lee, Jun; Park, Cheon-Tae; Yoon, Ju-Hyeon; Park, Keun-Bae

2007-01-01

SMART is an advanced modular integral type pressurized water reactor for a seawater desalination and an electricity production. Major components of the reactor coolant system such as the pressurizer, Reactor Coolant Pump (RCP), and steam generators are located inside the reactor vessel. The SMART can fundamentally eliminate the possibility of large break loss of coolant accidents (LBLOCAs), improve the natural circulation capability, and better accommodate and thus enhance a resistance to a wide range of transients and accidents. The safety goals of the SMART are enhanced through highly reliable safety systems such as the passive residual heat removal system (PRHRS) and the safeguard vessel coupled with the passive safety injection feature. The safeguard vessel is a steel-made, leak-tight pressure vessel housing the RPV, SIT, and the associated valves and pipelines. A primary function of the safeguard vessel is to confine any radioactive release from the primary circuit within the vessel under DBAs related to loss of the integrity of the primary system. A preliminary performance analysis program for a safety system using the safeguard vessel is developed in this study. The developed program is composed of several subroutines for the reactor coolant system, passive safety injection system, safeguard vessel including the pressure suppression pool, and PRHRS. A small break loss of coolant accident at the upper part of a reactor is analyzed and the results are discussed

Safety Information System Guide

International Nuclear Information System (INIS)

Bullock, M.G.

1977-03-01

This Guide provides guidelines for the design and evaluation of a working safety information system. For the relatively few safety professionals who have already adopted computer-based programs, this Guide may aid them in the evaluation of their present system. To those who intend to develop an information system, it will, hopefully, inspire new thinking and encourage steps towards systems safety management. For the line manager who is working where the action is, this Guide may provide insight on the importance of accident facts as a tool for moving ideas up the communication ladder where they will be heard and acted upon; where what he has to say will influence beneficial changes among those who plan and control his operations. In the design of a safety information system, it is suggested that the safety manager make friends with a computer expert or someone on the management team who has some feeling for, and understanding of, the art of information storage and retrieval as a new and better means for communication

Investigation of the operatability of safety systems

International Nuclear Information System (INIS)

Riedle, K.

1982-01-01

The requirements to the safety systems of a nuclear power plant result from the protective aims and the postulated incidents. These requirements are satisfied also during an accident if they are laid out for that load case. The evidence (by analyses or experiments or combination of both) consists of the steps determination of the load, determination of the resulting stress of the components, and comparison with the permitted limiting values. The author gives several examples for typical evidences of operationability. (orig./HP) [de

Technical feasibility and reliability of passive safety systems for nuclear power plants. Proceedings of an advisory group meeting

International Nuclear Information System (INIS)

1996-12-01

The meeting provided an overview of the key issues on passive safety. Technical problems which may affect future deployment, and the operating experience of passive systems and components, as well as, definitions of passive safety terms, were discussed. Advantages and disadvantages of passive systems were also highlighted. The philosophy behind different passive safety systems was presented and the range of possibility between fully passive and fully active systems was discussed. Refs, figs, tabs

Technical feasibility and reliability of passive safety systems for nuclear power plants. Proceedings of an advisory group meeting

Energy Technology Data Exchange (ETDEWEB)

NONE

1996-12-01

The meeting provided an overview of the key issues on passive safety. Technical problems which may affect future deployment, and the operating experience of passive systems and components, as well as, definitions of passive safety terms, were discussed. Advantages and disadvantages of passive systems were also highlighted. The philosophy behind different passive safety systems was presented and the range of possibility between fully passive and fully active systems was discussed. Refs, figs, tabs.

Radiation safety aspects during nondestructive testing of reactor shielding components by gamma radiometry

International Nuclear Information System (INIS)

Viswanathan, S.; Jose, M.T.; Venkatraman, B.

2016-01-01

In nuclear facilities, effective shielding of radioactive components and structures are essential to ensure radiation protection to operating personnel. The shield structures are made of lead, steel and concrete with varying thickness of up to 1200 mm. It needs to be verified for shielding integrity, presence of voids, blowholes and defects to avoid exposure to workers and to public at large. Radiometry using gamma source serves as excellent tool for non-destructive examination of such structures and components. Gamma sources of high activity up to 50 Curies (gamma camera type) depending on the thickness of component have to be used. During the testing exposure to the operating personnel needs to be minimized, this requires certain safety procedures to be followed. This paper focuses the methodology to be adapted by means of selection of source, effective training of personnel, compliance with safety requirements and maintenance of source devices

Developing an OMERACT Core Outcome Set for Assessing Safety Components in Rheumatology Trials

DEFF Research Database (Denmark)

Klokker, Louise; Tugwell, Peter; Furst, Daniel E

2016-01-01

in such COS. The Outcome Measures in Rheumatology (OMERACT) Filter 2.0 emphasizes the importance of measuring harms. The Safety Working Group was reestablished at the OMERACT 2016 with the objective to develop a COS for assessing safety components in trials across rheumatologic conditions. METHODS: The safety......OBJECTIVE: Failure to report harmful outcomes in clinical research can introduce bias favoring a potentially harmful intervention. While core outcome sets (COS) are available for benefits in randomized controlled trials in many rheumatic conditions, less attention has been paid to safety...... that patients consider relevant so that they will be able to make informed decisions. CONCLUSION: The OMERACT Safety Working Group will advance the work previously done within OMERACT using a new patient-driven approach....

System Study: High-Pressure Safety Injection 1998-2014

Energy Technology Data Exchange (ETDEWEB)

Schroeder, John Alton [Idaho National Lab. (INL), Idaho Falls, ID (United States). Risk Assessment and Management Services Dept.

2015-12-01

This report presents an unreliability evaluation of the high-pressure safety injection system (HPSI) at 69 U.S. commercial nuclear power plants. Demand, run hours, and failure data from fiscal year 1998 through 2014 for selected components were obtained from the Institute of Nuclear Power Operations (INPO) Consolidated Events Database (ICES). The unreliability results are trended for the most recent 10 year period, while yearly estimates for system unreliability are provided for the entire active period. No statistically significant increasing or decreasing trends were identified in the HPSI results.

Issues regarding Risk Effect Analysis of Digitalized Safety Systems and Main Risk Contributors

International Nuclear Information System (INIS)

Kang, Hyun Gook; Jang, Seung-Cheol

2008-01-01

Risk factors of safety-critical digital systems affect overall plant risk. In order to assess this risk effect, a risk model of a digitalized safety system is required. This article aims to provide an overview of the issues when developing a risk model and demonstrate their effect on plant risk quantitatively. Research activities in Korea for addressing these various issues, such as the software failure probability and the fault coverage of self monitoring mechanism are also described. The main risk contributors related to the digitalized safety system were determined in a quantitative manner. Reactor protection system and engineered safety feature component control system designed as part of the Korean Nuclear I and C System project are used as example systems. Fault-tree models were developed to assess the failure probability of a system function which is designed to generate an automated signal for actuating both of the reactor trip and the complicated accident-mitigation actions. The developed fault trees were combined with a plant risk model to evaluate the effect of a digitalized system's failure on the plant risk. (authors)

Operation safety of control systems. Principles and methods; Surete de fonctionnement des systemes de commande. Principes et methodes

Energy Technology Data Exchange (ETDEWEB)

Aubry, J.F. [Institut National Polytechnique, 54 - Nancy (France); Chatelet, E. [Universite de Technologie de Troyes, 10 (France)

2008-09-15

This article presents the main operation safety methods that can be implemented to design safe control systems taking into account the behaviour of the different components with each other (binary 'operation/failure' behaviours, non-consistent behaviours and 'hidden' failures, dynamical behaviours and temporal aspects etc). To take into account these different behaviours, advanced qualitative and quantitative methods have to be used which are described in this article: 1 - qualitative methods of analysis: functional analysis, preliminary risk analysis, failure mode and failure effects analyses; 2 - quantitative study of systems operation safety: binary representation models, state space-based methods, event space-based methods; 3 - application to the design of control systems: safe specifications of a control system, qualitative analysis of operation safety, quantitative analysis, example of application; 4 - conclusion. (J.S.)

Assessment and management of ageing of major nuclear power plant components important to safety: BWR pressure vessel internals

International Nuclear Information System (INIS)

2005-10-01

At present, there are over four hundred operational nuclear power plants (NPPs) in IAEA Member States. Operating experience has shown that ineffective control of the ageing degradation of the major NPP components (caused for instance by unanticipated phenomena and by operating maintenance or manufacturing errors) can jeopardize plant safety and also plant life. Ageing in these NPPs must be therefore effectively managed to ensure the availability of design functions throughout the plant service life. From the safety perspective, this means controlling, within acceptable limits, the ageing degradation and ware out of components important to safety so that adequate safety margins remain, i.e. integrity and functional capability in excess of normal operating requirements. This TECDOC is one in a series of guidance reports on the assessment and management of ageing of the major NPP components important to safety. The reports are based on experience and practices of NPP operators, regulators, designers, manufacturers, and technical support organizations and a widely accepted Methodology for the Management of Ageing of NPP Components Important to Safety, which was issued by the IAEA in 1992. Since the reports are written from a safety perspective, they do not address life or life cycle management of plant components, which involves economic considerations. The current practices for the assessment of safety margins (fitness for service) and the inspection, monitoring and mitigation of ageing degradation of selected components of heavy water moderated reactors (HWRs), boiling water reactors (BWRs), pressurized water reactors (PWRs), and water moderated, water cooled energy reactors (WWERs) are documented in the reports. These practices are intended to help all involved directly and indirectly in ensuring the safe operation of NPPs, and also to provide a common technical basis for dialogue between plant operators and regulators when dealing with age related licensing issues

Enhancing Public Helicopter Safety as a Component of Homeland Security

Science.gov (United States)

2016-12-01

Risk Assessment Tool GPS Global Positioning System IFR instrument flight rules ILS instrument landing system IMC instrument meteorological...daily operations. Additionally, the effectiveness of the standards is evaluated by determining if these standards would have prevented the accidents...trends, such as human behavior and lack of standards, that are common in public safety helicopter accidents. Public safety aviation agencies can use this

Cooling system for auxiliary reactor component

International Nuclear Information System (INIS)

Fujihira, Tomoko.

1991-01-01

A cooling system for auxiliary reactor components comprises three systems, that is, two systems of reactor component cooling water systems (RCCW systems) and a high pressure component cooling water system (HPCCW system). Connecting pipelines having partition valves are intervened each in a cooling water supply pipeline to an emmergency component of each of the RCCW systems, a cooling water return pipeline from the emmergency component of each of the RCCW systems, a cooling water supply pipeline to each of the emmergency components of one of the RCCW system and the HPCCW system and a cooling water return pipeline from each of the emmergency components of one of the RCCW system and the HPCCW system. With such constitution, cooling water can be supplied also to the emmergency components in the stand-by system upon periodical inspection or ISI, thereby enabling to improve the backup performance of the emmergency cooling system. (I.N.)

FOOD SAFETY CONTROL SYSTEM IN CHINA

Institute of Scientific and Technical Information of China (English)

Liu Wei-jun; Wei Yi-min; Han Jun; Luo Dan; Pan Jia-rong

2007-01-01

Most countries have expended much effort to develop food safety control systems to ensure safe food supplies within their borders. China, as one of the world's largest food producers and consumers,pays a lot of attention to food safety issues. In recent years, China has taken actions and implemented a series of plans in respect to food safety. Food safety control systems including regulatory, supervisory,and science and technology systems, have begun to be established in China. Using, as a base, an analysis of the current Chinese food safety control system as measured against international standards, this paper discusses the need for China to standardize its food safety control system. We then suggest some policies and measures to improve the Chinese food safety control system.

Component Control System for a Vehicle

Science.gov (United States)

Fraser-Chanpong, Nathan (Inventor); Spain, Ivan (Inventor); Dawson, Andrew D. (Inventor); Bluethmann, William J. (Inventor); Lee, Chunhao J. (Inventor); Vitale, Robert L. (Inventor); Guo, Raymond (Inventor); Waligora, Thomas M. (Inventor); Akinyode, Akinjide Akinniyi (Inventor); Reed, Ryan M. (Inventor)

2016-01-01

A vehicle includes a chassis, a modular component, and a central operating system. The modular component is supported by the chassis. The central operating system includes a component control system, a primary master controller, and a secondary master controller. The component control system is configured for controlling the modular component. The primary and secondary master controllers are in operative communication with the component control system. The primary and secondary master controllers are configured to simultaneously transmit commands to the component control system. The component control system is configured to accept commands from the secondary master controller only when a fault occurs in the primary master controller.

Energy Storage System Safety: Plan Review and Inspection Checklist

Energy Technology Data Exchange (ETDEWEB)

Cole, Pam C (PNNL); Conover, David R (PNNL)

2017-03-01

Codes, standards, and regulations (CSR) governing the design, construction, installation, commissioning, and operation of the built environment are intended to protect the public health, safety, and welfare. While these documents change over time to address new technology and new safety challenges, there is generally some lag time between the introduction of a technology into the market and the time it is specifically covered in model codes and standards developed in the voluntary sector. After their development, there is also a timeframe of at least a year or two until the codes and standards are adopted. Until existing model codes and standards are updated or new ones are developed and then adopted, one seeking to deploy energy storage technologies or needing to verify the safety of an installation may be challenged in trying to apply currently implemented CSRs to an energy storage system (ESS). The Energy Storage System Guide for Compliance with Safety Codes and Standards1 (CG), developed in June 2016, is intended to help address the acceptability of the design and construction of stationary ESSs, their component parts, and the siting, installation, commissioning, operations, maintenance, and repair/renovation of ESS within the built environment.

The use of probabilistic safety assessment (PSA) based maintenance indicators to increase the availability of safety related systems in nuclear power plants

International Nuclear Information System (INIS)

Kirchsteiger, C.

1991-04-01

This work describes the theoretical development of a Probabilistic Safety Assessment (PSA) based Performance Indicator (PI) model for a comprehensive Maintenance Efficiency Analysis (MEA) and its practical application to past operational history data of a certain nuclear power plant. Plant specific equipment history and maintenance work on data have been collected and analysed using various advanced statistical procedures (nonparametric methods, multivariate analysis in order to be able to estimate safety system related equipment and maintenance process trends. The main results of such a MEA case study are the trends in the (in)effectiveness of the performance of a selected safety system and its dominant components as well as the detection of the dominant maintenance related causes of its bad (good) equipment performance. Finally, the therefrom gained results are used to propose a new set of safety system-based and maintenance-related performance indicators, including suggestions for a corresponding plant specific maintenance data collection system. (author)

Assessment of safety culture at INPP

International Nuclear Information System (INIS)

Lesin, S.

2002-01-01

Safety Culture covers all main directions of plant activities and the plant departments involved through integration into the INPP Quality Assurance System. Safety Culture is represented by three components. The first is the clear INPP Safety and Quality Assurance Policy. Based on the Policy INPP is safely operated and managers' actions firstly aim at safety assurance. The second component is based on personal responsibility for safety and attitude of each employee of the plant. The third component is based on commitment to safety and competence of managers and employees of the plant. This component links the first two to ensure efficient management of safety at the plant. The above mentioned components including the elements which may significantly affect Safety Culture are also presented in the attachment. The concept of such model implies understanding of effect of different factors on the level of Safety Culture in the organization. In order to continuously correct safety problems, self-assessment of the Safety Culture level is performed at regular intervals. (author)

NASA System Safety Handbook. Volume 1; System Safety Framework and Concepts for Implementation

Science.gov (United States)

Dezfuli, Homayoon; Benjamin, Allan; Everett, Christopher; Smith, Curtis; Stamatelatos, Michael; Youngblood, Robert

2011-01-01

System safety assessment is defined in NPR 8715.3C, NASA General Safety Program Requirements as a disciplined, systematic approach to the analysis of risks resulting from hazards that can affect humans, the environment, and mission assets. Achievement of the highest practicable degree of system safety is one of NASA's highest priorities. Traditionally, system safety assessment at NASA and elsewhere has focused on the application of a set of safety analysis tools to identify safety risks and formulate effective controls.1 Familiar tools used for this purpose include various forms of hazard analyses, failure modes and effects analyses, and probabilistic safety assessment (commonly also referred to as probabilistic risk assessment (PRA)). In the past, it has been assumed that to show that a system is safe, it is sufficient to provide assurance that the process for identifying the hazards has been as comprehensive as possible and that each identified hazard has one or more associated controls. The NASA Aerospace Safety Advisory Panel (ASAP) has made several statements in its annual reports supporting a more holistic approach. In 2006, it recommended that "... a comprehensive risk assessment, communication and acceptance process be implemented to ensure that overall launch risk is considered in an integrated and consistent manner." In 2009, it advocated for "... a process for using a risk-informed design approach to produce a design that is optimally and sufficiently safe." As a rationale for the latter advocacy, it stated that "... the ASAP applauds switching to a performance-based approach because it emphasizes early risk identification to guide designs, thus enabling creative design approaches that might be more efficient, safer, or both." For purposes of this preface, it is worth mentioning three areas where the handbook emphasizes a more holistic type of thinking. First, the handbook takes the position that it is important to not just focus on risk on an individual

Functional safety requirements of the propulsion and power supply equipment of the MAGLEV system; Umgang mit funktionalen Sicherheitsanforderungen bei Antrieb und Energieversorgung der Magnetbahn

Energy Technology Data Exchange (ETDEWEB)

Stephan, A. [IFB Inst. fuer Bahntechnik GmbH, Dresden (Germany)

2008-07-01

In the Transrapid high-speed MAGLEV railway system, the operating control subsystem provides for the higher-level safety function. Within the system also selected components of the stationary linear-motor drive have important safety functions. Under the approval procedure, the safety-relevant functions must be certified. This makes specific requirements on the development and integration of the components used. (orig.)

PSA methodology including new design, operational and safety factors, 'Level of recognition of phenomena with a presumed dominant influence upon operational safety' (failures of conventional as well as non-conventional passive components, dependent failures, influence of operator, fires and external threats, digital control, organizational factors)

International Nuclear Information System (INIS)

Jirsa, P.

2001-10-01

The document represents a specific type of discussion of existing methodologies for the creation and application of probabilistic safety assessment (PSA) in light of the EUR document summarizing requirements placed by Western European NPP operators on the future design of nuclear power plants. A partial goal of this discussion consists in mapping, from the PSA point of view, those selected design, operational and/or safety factors of future NPPs that may be entirely new or, at least, newly addressed. Therefore, the terms of reference for this stage were formulated as follows: Assess current level of knowledge and procedures in the analysis of factors and phenomena with a dominant influence upon operational safety of new generation reactors, especially in the following areas: (1) Phenomenology of failure types and mechanisms and reliability of conventional passive safety system components; (2) Phenomenology of failure types and mechanisms and reliability of non-conventional passive components of newly designed safety systems; (3) Phenomenology of types and mechanisms of dependent failures; (4) Human factor role in new generation reactors and its effect upon safety; (5) Fire safety and other external threats to new nuclear installations; (6) Reliability of the digital systems of the I and C system and their effect upon safety; and (7) Organizational factors in new nuclear installations. (P.A.)

Component reliability data for use in probabilistic safety assessment

International Nuclear Information System (INIS)

1988-10-01

Generic component reliability data is indispensable in any probabilistic safety analysis. It is not realistic to assume that all possible component failures and failure modes modeled in a PSA would be available from the operating experience of a specific plant in a statistically meaningful way. The degree that generic data is used in PSAs varies from case to case. Some studies are totally based on generic data while others use generic data as prior information to be specialized by plant specific data. Most studies, however, finally use a combination where data for certain components come from generic data sources and others from Bayesian updating. The IAEA effort to compile a generic component reliability data base aimed at facilitating the use of data available in the literature and at highlighting pitfalls which deserve special consideration. It was also intended to complement the fault tree and event tree package (PSAPACK) and to facilitate its use. Moreover, it should be noted, that the IAEA has recently initiated a Coordinated Research Program in Reliability Data Collection, Retrieval and Analysis. In this framework the issues identified as most affecting the quality of existing data bases would be addressed. This report presents the results of a compilation made from the specialized literature and includes reliability data for components usually considered in PSA

Design of the Control System for Engineered Safety Features of KIJANG Research Reactor

International Nuclear Information System (INIS)

Kim, Hagtae; Kim, Jun-Yeon; Chae, Hee-Taek

2015-01-01

The purpose of this paper is to design an effective control system for the Engineered Safety Features (ESF) of KJRR such as the Safety Residual Heat Removal System (SRHRS) pumps and Siphon Break Valve (SBV) without an Engineered Safety Features-Component Control System (ESF-CCS). This control system is called a 'local motor starter', because this system controls motors in the SRHRS pumps and SBVs by receiving the signal from Reactor Protection System (RPS) and Alternate Protection System (APS) when the differential pressure or pool level reach the set points. In this paper, the design concepts and requirements of the local motor starter based on the design features of KJRR is proposed. An ESF is a safety system that mitigates consequences of the Anticipated Operational Occurrence (AOO) and Design Basis Accident (DBA). The results of this paper are able to be used for the development of control systems for research reactors similar to KJRR. The precondition for such application is to have a few ESFs and conduct simple logic. The proposed control system called a local motor starter is being designed, and a manufacture of the actual systems is expected in the foreseeable future

Quality and safety implications of emergency department information systems.

Science.gov (United States)

Farley, Heather L; Baumlin, Kevin M; Hamedani, Azita G; Cheung, Dickson S; Edwards, Michael R; Fuller, Drew C; Genes, Nicholas; Griffey, Richard T; Kelly, John J; McClay, James C; Nielson, Jeff; Phelan, Michael P; Shapiro, Jason S; Stone-Griffith, Suzanne; Pines, Jesse M

2013-10-01

The Health Information Technology for Economic and Clinical Health Act of 2009 and the Centers for Medicare & Medicaid Services "meaningful use" incentive programs, in tandem with the boundless additional requirements for detailed reporting of quality metrics, have galvanized hospital efforts to implement hospital-based electronic health records. As such, emergency department information systems (EDISs) are an important and unique component of most hospitals' electronic health records. System functionality varies greatly and affects physician decisionmaking, clinician workflow, communication, and, ultimately, the overall quality of care and patient safety. This article is a joint effort by members of the Quality Improvement and Patient Safety Section and the Informatics Section of the American College of Emergency Physicians. The aim of this effort is to examine the benefits and potential threats to quality and patient safety that could result from the choice of a particular EDIS, its implementation and optimization, and the hospital's or physician group's approach to continuous improvement of the EDIS. Specifically, we explored the following areas of potential EDIS safety concerns: communication failure, wrong order-wrong patient errors, poor data display, and alert fatigue. Case studies are presented that illustrate the potential harm that could befall patients from an inferior EDIS product or suboptimal execution of such a product in the clinical environment. The authors have developed 7 recommendations to improve patient safety with respect to the deployment of EDISs. These include ensuring that emergency providers actively participate in selection of the EDIS product, in the design of processes related to EDIS implementation and optimization, and in the monitoring of the system's ongoing success or failure. Our recommendations apply to emergency departments using any type of EDIS: custom-developed systems, best-of-breed vendor systems, or enterprise systems

Selection of detailed items for periodic safety review on PWR radwaste management system

Energy Technology Data Exchange (ETDEWEB)

Sung, K. B.; Ahn, Y. S.; Park, Y. S.; Kim, S. H.; Kim, J. T. [Korea Hydric and Nuclear Power Company, Taejon (Korea, Republic of)

2003-10-01

Selection of detailed-items for Periodic Safety Review on PWR radwaste management system, the main component could be faithfully clarified according to the purpose of establishment on each system and basic purpose. It is proper to select detailed-items those of radioactivities in the reactor coolant activity levels and the released volume of liquid and gaseous radioactive material on safety performance. It's also proper to select solid radwaste production quantities as detailed-item that it would be predict the next ten years trends after PSR.

Problems of Rural Food Safety and Strategies of Constructing Supervision System

Institute of Scientific and Technical Information of China (English)

2011-01-01

This paper expounds the practical necessity of constructing diversified rural food safety supervision system as follows: it is the necessary requirements of guaranteeing people’s health and life safety; it is an important component of governmental function of social management and the logical extension of administrative responsibilities; it is the basis of maintaining order of rural society and constructing harmonious society. The main problems existing in the supervision of rural food safety are analyzed as follows: first, the legislative work of rural food safety lags behind to some extent; second, the supervision of governmental departments on rural food safety is insufficient; third, the industrial supervision mechanism of rural food security is not perfect; fourth, the role of rural social organizations in supervising food safety is limited; fifth, the farmers’ awareness of food safety supervision is not strong. Based on these problems, the targeted strategies of constructing diversified rural food safety supervision system are put forward as follows: accelerate the legislation of rural food safety, and ensure that there are laws to go by; give play to the dominant role of government, and strengthen administrative supervision on rural food safety; perfect industrial convention of rural food safety, and improve industrial supervision mechanism; actively support the fostering of social organizations, and give play to the role of supervision of organizations; cultivate correct concept of rights and obligations of farmers, and form awareness of food safety supervision.

Advances in safety related maintenance

International Nuclear Information System (INIS)

2000-03-01

The maintenance of systems, structures and components in nuclear power plants (NPPs) plays an important role in assuring their safe and reliable operation. Worldwide, NPP maintenance managers are seeking to reduce overall maintenance costs while maintaining or improving the levels of safety and reliability. Thus, the issue of NPP maintenance is one of the most challenging aspects of nuclear power generation. There is a direct relation between safety and maintenance. While maintenance alone (apart from modifications) will not make a plant safer than its original design, deficient maintenance may result in either an increased number of transients and challenges to safety systems or reduced reliability and availability of safety systems. The confidence that NPP structures, systems and components will function as designed is ultimately based on programmes which monitor both their reliability and availability to perform their intended safety function. Because of this, approaches to monitor the effectiveness of maintenance are also necessary. An effective maintenance programme ensures that there is a balance between the improvement in component reliability to be achieved and the loss of component function due to maintenance downtime. This implies that the safety level of an NPP should not be adversely affected by maintenance performed during operation. The nuclear industry widely acknowledges the importance of maintenance in NPP safety and operation and therefore devotes great efforts to develop techniques, methods and tools to aid in maintenance planning, follow-up and optimization, and in assuring the effectiveness of maintenance

The safety performance management system: A tool for diagnosis, intervention and measurement

International Nuclear Information System (INIS)

Haber, S.B.; Shurberg, D.A.

2002-01-01

Many organizations depend on human performance to avoid incidents involving significant adverse consequences. Such organizations are typically termed high reliability organizations (HROs). While heavy emphasis has been placed on designing system hardware and software to intercept and mitigate events that could cause adverse consequences, dealing with the design of the human component has proven to be more complicated. Examination of various safety-related incidents makes it clear that human performance, and in particular organizational processes, plays a dominant role. The human errors are of various origins and are typically part of larger organizational processes that encourage unsafe acts that ultimately produce system failures. It is generally postulated that without an effective organizational safety culture, a safe working environment is impossible. While many different perspectives exist from which safety issues might be addressed, a method that allows the quantitative measurement of organizational processes deemed to impact overall safety performance is considered useful to understand the potential for future inadequate safety performance. This paper describes the Safety Performance Management System, a method useful for diagnosis, subsequent intervention and follow-on measurement. Implications for use of this method are presented and the concluding discussion includes insights regarding the general application of the method to improved facility safety performance. (author)

Towards a decision support system for control of multiple food safety hazards in raw milk production

NARCIS (Netherlands)

Spiegel, van der M.; Sterrenburg, P.; Haasnoot, W.; Fels-Klerx, van der H.J.

2013-01-01

Decision support systems (DSS) for controlling multiple food safety hazards in raw milk production have not yet been developed, but the underlying components are fragmentarily available. This article presents the state-of-the-art of essential DSS elements for judging food safety compliance of raw

Analysis of the reliability of the active injection safety systems of Angra I

International Nuclear Information System (INIS)

Frutuoso e Melo, P.F.F.

1981-01-01

The reliability of the active emergency core cooling systems of Angra I nuclear power plant is evaluated. The fault tree analysis is employed. The unavailability of the above cited systems, is calculated. A parametric sensitivity analysis has been performed, due to the existing scattering in the failure and repair rate data of these system's components. The minimal cut sets were determined and, as a final step, a reliability importance analysis has been performed. This final step has required the development of a computer program. The methodology and data from the 'Reactor Safety Study' (Wash-1400) (in which the reliability of safety systems of a tipical PWR plant is calculated), is employed. The unavailability values for the safety systems analysed are too low, thus showing that in most cases the systems analysed are available to mitigate the effects of a loss-of-coolant accident. (Author) [pt

Survey of the passive safety systems of the BWR 1000 concept from SIEMENS

Energy Technology Data Exchange (ETDEWEB)

Mattern, J; Brettschuh, W; Palavecino, C [SIEMENS, Energieerzeugung, Offenbach (Germany)

1996-12-01

Through the use of passive safety systems and components for accident control in addition to the active systems required for plant operation, a higher degree of safety against core-endangering conditions is achieved which is no longer ruled by complex system engineering dependent on power supply and activation by I and C systems. A low core power density and large water inventories stored inside the reactor pressure vessel as well as inside and outside the containment ensure good plant behaviour in the event of transients or accidents. These passive safety systems - which required neither electric power to function nor I and C systems for actuation, being activated solely on the basis of changes in process variables such as water level, pressure and temperature - provide a grace period of more than 5 days after the onset of accident conditions before manual intervention becomes necessary. 8 figs.

C-Band Airport Surface Communications System Engineering-Initial High-Level Safety Risk Assessment and Mitigation

Science.gov (United States)

Zelkin, Natalie; Henriksen, Stephen

2011-01-01

This document is being provided as part of ITT's NASA Glenn Research Center Aerospace Communication Systems Technical Support (ACSTS) contract: "New ATM Requirements--Future Communications, C-Band and L-Band Communications Standard Development." ITT has completed a safety hazard analysis providing a preliminary safety assessment for the proposed C-band (5091- to 5150-MHz) airport surface communication system. The assessment was performed following the guidelines outlined in the Federal Aviation Administration Safety Risk Management Guidance for System Acquisitions document. The safety analysis did not identify any hazards with an unacceptable risk, though a number of hazards with a medium risk were documented. This effort represents an initial high-level safety hazard analysis and notes the triggers for risk reassessment. A detailed safety hazards analysis is recommended as a follow-on activity to assess particular components of the C-band communication system after the profile is finalized and system rollout timing is determined. A security risk assessment has been performed by NASA as a parallel activity. While safety analysis is concerned with a prevention of accidental errors and failures, the security threat analysis focuses on deliberate attacks. Both processes identify the events that affect operation of the system; and from a safety perspective the security threats may present safety risks.

An approach for assessing ALWR passive safety system reliability

International Nuclear Information System (INIS)

Hake, T.M.

1991-01-01

Many advanced light water reactor designs incorporate passive rather than active safety features for front-line accident response. A method for evaluating the reliability of these passive systems in the context of probabilistic risk assessment has been developed at Sandia National Laboratories. This method addresses both the component (e.g. valve) failure aspect of passive system failure, and uncertainties in system success criteria arising from uncertainties in the system's underlying physical processes. These processes provide the system's driving force; examples are natural circulation and gravity-induced injection. This paper describes the method, and provides some preliminary results of application of the approach to the Westinghouse AP600 design

Medication Safety Systems and the Important Role of Pharmacists.

Science.gov (United States)

Mansur, Jeannell M

2016-03-01

Preventable medication-related adverse events continue to occur in the healthcare setting. While the Institute of Medicine's To Err is Human, published in 2000, highlighted the prevalence of medical and medication-related errors in patient morbidity and mortality, there has not been significant documented progress in addressing system contributors to medication errors. The lack of progress may be related to the myriad of pharmaceutical options now available and the nuances of optimizing drug therapy to achieve desired outcomes and prevent undesirable outcomes. However, on a broader scale, there may be opportunities to focus on the design and performance of the many processes that are part of the medication system. Errors may occur in the storage, prescribing, transcription, preparation and dispensing, or administration and monitoring of medications. Each of these nodes of the medication system, with its many components, is prone to failure, resulting in harm to patients. The pharmacist is uniquely trained to be able to impact medication safety at the individual patient level through medication management skills that are part of the clinical pharmacist's role, but also to analyze the performance of medication processes and to lead redesign efforts to mitigate drug-related outcomes that may cause harm. One population that can benefit from a focus on medication safety through clinical pharmacy services and medication safety programs is the elderly, who are at risk for adverse drug events due to their many co-morbidities and the number of medications often used. This article describes the medication safety systems and provides a blueprint for creating a foundation for medication safety programs within healthcare organizations. The specific role of pharmacists and clinical pharmacy services in medication safety is also discussed here and in other articles in this Theme Issue.

How could intelligent safety transport systems enhance safety ?

NARCIS (Netherlands)

Wiethoff, M. Heijer, T. & Bekiaris, E.

2017-01-01

In Europe, many deaths and injured each years are the cost of today's road traffic. Therefore, it is wise to look for possible solutions for enhancing traffic safety. Some Advanced Driver Assistance Systems (ADAS) are expected to increase safety, but they may also evoke new safety hazards. Only

Structural Design of Glass and Ceramic Components for Space System Safety

Science.gov (United States)

Bernstein, Karen S.

2007-01-01

Manned space flight programs will always have windows as part of the structural shell of the crew compartment. Astronauts and cosmonauts need to and enjoy looking out of the spacecraft windows at Earth, at approaching vehicles, at scientific objectives and at the stars. With few exceptions spacecraft windows have been made of glass, and the lessons learned over forty years of manned space flight have resulted in a well-defined approach for using this brittle, unforgiving material in NASA's vehicles, in windows and other structural applications. This chapter will outline the best practices that have developed at NASA for designing, verifying and accepting glass (and ceramic) windows and other components for safe and reliable use in any space system.

Safety Review related to Commercial Grade Digital Equipment in Safety System

International Nuclear Information System (INIS)

Yu, Yeongjin; Park, Hyunshin; Yu, Yeongjin; Lee, Jaeheung

2013-01-01

The upgrades or replacement of I and C systems on safety system typically involve digital equipment developed in accordance with non-nuclear standards. However, the use of commercial grade digital equipment could include the vulnerability for software common-mode failure, electromagnetic interference and unanticipated problems. Although guidelines and standards for dedication methods of commercial grade digital equipment are provided, there are some difficulties to apply the methods to commercial grade digital equipment for safety system. This paper focuses on regulatory guidelines and relevant documents for commercial grade digital equipment and presents safety review experiences related to commercial grade digital equipment in safety system. This paper focuses on KINS regulatory guides and relevant documents for dedication of commercial grade digital equipment and presents safety review experiences related to commercial grade digital equipment in safety system. Dedication including critical characteristics is required to use the commercial grade digital equipment on safety system in accordance with KEPIC ENB 6370 and EPRI TR-106439. The dedication process should be controlled in a configuration management process. Appropriate methods, criteria and evaluation result should be provided to verify acceptability of the commercial digital equipment used for safety function

Operating experience and systems analysis at Trillo NPP: A program intended for systematic review of plant safety systems to assess design basis requirements compliance

International Nuclear Information System (INIS)

Vega, R. de la

1996-01-01

The program was defined to apply to all plant safety systems and/or systems included in plant Technical Specifications. The goal of the program was to ensure, by systematic design, construction, and commissioning review, the adequacy of safety systems, structures and components to fulfill their safety functions. Also, as a result of the program, it was established that a complete, unambiguous, systematic, design basis definition shall take place. And finally, a complete documental review of the plant design shall result from the program execution

Safety parameter display system: an operator support system for enhancement of safety in Indian PHWRs

International Nuclear Information System (INIS)

Subramaniam, K.; Biswas, T.

1994-01-01

Ensuring operational safety in nuclear power plants is important as operator errors are observed to contribute significantly to the occurrence of accidents. Computerized operator support systems, which process and structure information, can help operators during both normal and transient conditions, and thereby enhance safety and aid effective response to emergency conditions. An important operator aid being developed and described in this paper, is the safety parameter display system (SPDS). The SPDS is an event-independent, symptom-based operator aid for safety monitoring. Knowledge-based systems can provide operators with an improved quality of information. An information processing model of a knowledge based operator support system (KBOSS) developed for emergency conditions using an expert system shell is also presented. The paper concludes with a discussion of the design issues involved in the use of a knowledge based systems for real time safety monitoring and fault diagnosis. (author). 8 refs., 4 figs., 1 tab

Diagnosis of the Main Busbar II Panel Components Ageing of RSG-GAS Electrical System by Using Infrared Thermography

International Nuclear Information System (INIS)

Teguh Sulistyo; Kiswanto; Roziq Himawan; Ari Satmoko

2007-01-01

To support the operation of RSG-GAS safely, the diagnosis of the ageing of main busbar II BHD/BHE/BHF panel components of RSG-GAS electrical system have been done. By using infrared thermography type Thermo Tracer TH9100PM VI/PW VI. The results of the diagnosis showed that some of the components under degradation with various rate. It can cause the system failure. By understanding the components ageing degradation mechanism and performing the preventive and predictive maintenance and safety of RSG-GAS electrical system earlier, the possibility of accident can be avoided. (author)

Periodic safety analyses; Les essais periodiques

Energy Technology Data Exchange (ETDEWEB)

Gouffon, A; Zermizoglou, R

1990-12-01

The IAEA Safety Guide 50-SG-S8 devoted to 'Safety Aspects of Foundations of Nuclear Power Plants' indicates that operator of a NPP should establish a program for inspection of safe operation during construction, start-up and service life of the plant for obtaining data needed for estimating the life time of structures and components. At the same time the program should ensure that the safety margins are appropriate. Periodic safety analysis are an important part of the safety inspection program. Periodic safety reports is a method for testing the whole system or a part of the safety system following the precise criteria. Periodic safety analyses are not meant for qualification of the plant components. Separate analyses are devoted to: start-up, qualification of components and materials, and aging. All these analyses are described in this presentation. The last chapter describes the experience obtained for PWR-900 and PWR-1300 units from 1986-1989.

Comprehensive Lifecycle for Assuring System Safety

Science.gov (United States)

Knight, John C.; Rowanhill, Jonathan C.

2017-01-01

CLASS is a novel approach to the enhancement of system safety in which the system safety case becomes the focus of safety engineering throughout the system lifecycle. CLASS also expands the role of the safety case across all phases of the system's lifetime, from concept formation to decommissioning. As CLASS has been developed, the concept has been generalized to a more comprehensive notion of assurance becoming the driving goal, where safety is an important special case. This report summarizes major aspects of CLASS and contains a bibliography of papers that provide additional details.

CCF analysis of high redundancy systems safety/relief valve data analysis and reference BWR application

International Nuclear Information System (INIS)

Mankamo, T.; Bjoere, S.; Olsson, Lena

1992-12-01

Dependent failure analysis and modeling were developed for high redundancy systems. The study included a comprehensive data analysis of safety and relief valves at the Finnish and Swedish BWR plants, resulting in improved understanding of Common Cause Failure mechanisms in these components. The reference application on the Forsmark 1/2 reactor relief system, constituting of twelve safety/relief lines and two regulating relief lines, covered different safety criteria cases of reactor depressurization and overpressure protection function, and failure to re close sequences. For the quantification of dependencies, the Alpha Factor Model, the Binomial Probability Model and the Common Load Model were compared for applicability in high redundancy systems

Safety system function trend indicator: Theory and test application

International Nuclear Information System (INIS)

Azarm, M.A.; Carbonaro, J.F.; Boccio, J.L.; Vesely, W.E.

1989-01-01

The purpose of this paper is to summarize research conducted on the development and validation of quantitative indicators of safety performance. This work, performed under the Risk-Based Performance Indicator (RBPI) Project, FIN A-3295, for the Office of Research (RES), is considered part of NRC's Performance Indicator Program which is being coordinated through the Office for the Analysis and Evaluation of Operational Data (AEOD). The program originally focused on risk-based indicators at high levels of safety indices (e.g., core-damage frequency, functional unavailabilities, and sequence monitoring). The program was then redirected towards a more amenable goal, safety system unavailability indicators, mainly due to the lack of PRA models and plant data. In that regard, BNL published a technical report that introduced the concept of cycle-based indicators and also described various alternatives of monitoring safety system unavailabilities. Further simplification of these indicators was requested by NRC to facilitate their applications to all plants in a timely manner. This resulted in the development of Safety System Function Trend (SSFT) indicators which minimize the need for detailed system model as well as component history. The theoretical bases for these indicators were developed through various simulation studies to determine the ease of detecting a trend and/or unacceptable performance. These indicators, along with several other indicators, were then generated and compared using plant data as a part of a test application. The SSFT indicators, specifically, were constructed for a total of eight plants, consisting of two systems per plant. Emphasis was placed on examining relative changes, as well as the indicator's actual level. Both the trend and actual indicator level were found to be important in identifying plants with potential problems

Development of a Test Equipment for Performance Evaluation of Safety Systems

International Nuclear Information System (INIS)

Kim, S. J.; Kwon, S. M.; Lee, J. M.; Kim, C. K.; Cho, C. H.; Chun, J. H.; Park, M. K.

2004-07-01

The purpose of this study is to develop a test equipment for performance evaluation of safety systems in nuclear power plants. First, we develop an input-output simulator for reactor protection systems, ESF component control systems, and a data acquisition system for these I/O simulators as a hardware for this equipment. Then, we develop a software for human-machine interface system, which is easy-to-use and easy-to-modify. In addition, a simulation tool for a reactor trip switch gear is developed

Component reliability criticality or importance metrics for systems with degrading components

NARCIS (Netherlands)

Peng, H.; Coit, D.W.; Feng, Q.

2012-01-01

This paper proposes two new importance measures: one new importance measure for systems with -independent degrading components, and another one for systems with -correlated degrading components. Importance measures in previous research are inadequate for systems with degrading components because

A Regulatory Perspective on the Performance and Reliability of Nuclear Passive Safety Systems

International Nuclear Information System (INIS)

Quan, Pham Trung; Lee, Sukho

2016-01-01

Passive safety systems have been proven to enhance the safety of NPPs. When an accident such as station blackout occurs, these systems can perform the following functions: the decay heat removal, passive safety injection, containment cooling, and the retention of radioactive materials. Following the IAEA definitions, using passive safety systems reduces reliance on active components to achieve proper actuation and not requiring operator intervention in accident conditions. That leads to the deviations in boundary conditions of the critical process or geometric parameters, which activate and operate the system to perform accident prevention and mitigation functions. The main difficulties in evaluation of functional failure of passive systems arise because of (a) lack of plant operational experience; (b) scarcity of adequate experimental data from integral test facilities or from separate effect tests in order to understand the performance characteristics of these passive systems, not only at normal operation but also during accidents and transients; (c) lack of accepted definitions of failure modes for these systems; and (d) difficulty in modeling certain physical behavior of these systems. Reliability assessment of the PSS is still one of the important issues. Several reliability methodologies such as REPAS, RMPS and ASPRA have been applied to the reliability assessments. However, some issues are remained unresolved due to lack of understanding of the treatment of dynamic failure characteristics of components of the PSS, the treatment of dynamic variation of independence process parameters such as ambient temperature and the functional failure criteria of the PSS. Dynamic reliability methodologies should be integrated in the PSS reliability analysis to have a true estimate of system failure probability. The methodology should estimate the physical variation of the parameters and the frequency of the accident sequences when the dynamic effects are considered

Overall System Description and Safety Characteristics of Prototype Gen IV Sodium Cooled Fast Reactor in Korea

Directory of Open Access Journals (Sweden)

Jaewoon Yoo

2016-10-01

Full Text Available The Prototype Gen IV sodium cooled fast reactor (PGSFR has been developed for the last 4 years, fulfilling the technology demonstration of the burning capability of transuranic elements included in light water reactor spent nuclear fuel. The PGSFR design has been focused on the robustness of safety systems by enhancing inherent safety characteristics of metal fuel and strengthening passive safety features using natural circulation and thermal expansion. The preliminary safety information document as a major outcome of the first design phase of PGSFR development was issued at the end of 2015. The project entered the second design phase at the beginning of 2016. This paper summarizes the overall structures, systems, and components of nuclear steam supply system and safety characteristics of the PGSFR. The research and development activities to demonstrate the safety performance are also briefly introduced in the paper.

Overall system description and safety characteristics of Prototype Gen IV Sodium Cooled Fast Reactor in Korea

International Nuclear Information System (INIS)

Yoo, Jae Woon; Chang, Jin Wook; Lim, Jae Yong; Cheon, Jin Sik; Lee, Tae Ho; Kim, Sung Kyun; Lee, Kwi Lim; Joo, Hyung Kook

2016-01-01

The Prototype Gen IV sodium cooled fast reactor (PGSFR) has been developed for the last 4 years, fulfilling the technology demonstration of the burning capability of transuranic elements included in light water reactor spent nuclear fuel. The PGSFR design has been focused on the robustness of safety systems by enhancing inherent safety characteristics of metal fuel and strengthening passive safety features using natural circulation and thermal expansion. The preliminary safety information document as a major outcome of the first design phase of PGSFR development was issued at the end of 2015. The project entered the second design phase at the beginning of 2016. This paper summarizes the overall structures, systems, and components of nuclear steam supply system and safety characteristics of the PGSFR. The research and development activities to demonstrate the safety performance are also briefly introduced in the paper

Unilever food safety assurance system for refined vegetable oils and fats

Directory of Open Access Journals (Sweden)

van Duijn Gerrit

2010-03-01

Full Text Available The Unilever Food Safety Assurance system for refined oils and fats is based on risk assessments for the presence of contaminants or pesticide residues in crude oils, and refining process studies to validate the removal of these components. Crude oil risk assessments were carried out by combining supply chain visits, and analyses of the contaminant and pesticide residue levels in a large number of crude oil samples. Contaminants like poly-aromatic hydrocarbons and hydrocarbons of mineral origin, and pesticide residues can largely be removed by refining. For many years, this Food Safety Assurance System has proven to be effective in controlling contaminant levels in refined vegetable oils and fats.

Applications of the TVO piping and component analysis and monitoring system (PAMS)

Energy Technology Data Exchange (ETDEWEB)

Smeekes, P. (Teollisuuden Voima Oy, Olkiluoto (Finland)); Kuuluvainen, O. (Rostedt Oy, Luvia (Finland)); Torkkeli, E. (FEMdata Oy, Haukilahti (Finland))

2010-05-15

To make fitness, safety and lifetime related assessments for piping and components, the amount of data to be managed is getting larger and larger. At the same time it is essential that the data is reliable, up-to-date, well traceable and easy and fast to obtain. At present the main focus of PAMS is still on piping, but in the future the component related databases and applications will be more and more developed. This paper presents a piping and component database system, consisting of separate geometrical, material, loading, result and document databases as well as current and future applications of the system. By means of a user configurable interface program the user can generate indata files, run application programs and define what data to write back into the result database. The data in the result database can subsequently be used in new input files to perform postprocessing on previous results, for instance fatigue analysis. crack growth analysis or RI-ISI. The system is intended to facilitate the analyses of piping and components and generate well-documented appendices comprising significant parts of the input and output and the associated source references. (orig.)

Reliability prediction for the vehicles equipped with advanced driver assistance systems (ADAS and passive safety systems (PSS

Directory of Open Access Journals (Sweden)

Balbir S. Dhillon

2012-10-01

Full Text Available The human error has been reported as a major root cause in road accidents in today’s world. The human as a driver in road vehicles composed of human, mechanical and electrical components is constantly exposed to changing surroundings (e.g., road conditions, environmentwhich deteriorate the driver’s capacities leading to a potential accident. The auto industries and transportation authorities have realized that similar to other complex and safety sensitive transportation systems, the road vehicles need to rely on both advanced technologies (i.e., Advanced Driver Assistance Systems (ADAS and Passive Safety Systems (PSS (e.g.,, seatbelts, airbags in order to mitigate the risk of accidents and casualties. In this study, the advantages and disadvantages of ADAS as active safety systems as well as passive safety systems in road vehicles have been discussed. Also, this study proposes models that analyze the interactions between human as a driver and ADAS Warning and Crash Avoidance Systems and PSS in the design of vehicles. Thereafter, the mathematical models have been developed to make reliability prediction at any given time on the road transportation for vehicles equipped with ADAS and PSS. Finally, the implications of this study in the improvement of vehicle designs and prevention of casualties are discussed.

A Methodological Framework for Software Safety in Safety Critical Computer Systems

OpenAIRE

P. V. Srinivas Acharyulu; P. Seetharamaiah

2012-01-01

Software safety must deal with the principles of safety management, safety engineering and software engineering for developing safety-critical computer systems, with the target of making the system safe, risk-free and fail-safe in addition to provide a clarified differentaition for assessing and evaluating the risk, with the principles of software risk management. Problem statement: Prevailing software quality models, standards were not subsisting in adequately addressing the software safety ...

Applications and limits of application of fracture mechanics methods in assessing the safety of components

International Nuclear Information System (INIS)

Stahlberg, R.

1977-01-01

On the basis of fracture mechanics calculations and experimental investigations, it is shown how cracks of different shape and location behave under given static and cyclic loads. In particular, component safety with regard to spontaneous failure and crack growth behaviour in different components are discussed. [de

The Qualification Experiences for Safety-critical Software of POSAFE-Q

Energy Technology Data Exchange (ETDEWEB)

Kim, Jang Yeol; Son, Kwang Seop; Cheon, Se Woo; Lee, Jang Soo; Kwon, Kee Choon [Korea Atomic Energy Research Institute, Daejeon (Korea, Republic of)

2009-05-15

Programmable Logic Controllers (PLC) have been applied to the Reactor Protection System (RPS) and the Engineered Safety Feature (ESF)-Component Control System (CCS) as the major safety system components of nuclear power plants. This paper describes experiences on the qualification of the safety-critical software including the pCOS kernel and system tasks related to a safety-grade PLC, i.e. the works done for the Software Verification and Validation, Software Safety Analysis, Software Quality Assurance, and Software Configuration Management etc.

An Integrated Approach of Model checking and Temporal Fault Tree for System Safety Analysis

Energy Technology Data Exchange (ETDEWEB)

Koh, Kwang Yong; Seong, Poong Hyun [Korea Advanced Institute of Science and Technology, Daejeon (Korea, Republic of)

2009-10-15

Digitalization of instruments and control systems in nuclear power plants offers the potential to improve plant safety and reliability through features such as increased hardware reliability and stability, and improved failure detection capability. It however makes the systems and their safety analysis more complex. Originally, safety analysis was applied to hardware system components and formal methods mainly to software. For software-controlled or digitalized systems, it is necessary to integrate both. Fault tree analysis (FTA) which has been one of the most widely used safety analysis technique in nuclear industry suffers from several drawbacks as described in. In this work, to resolve the problems, FTA and model checking are integrated to provide formal, automated and qualitative assistance to informal and/or quantitative safety analysis. Our approach proposes to build a formal model of the system together with fault trees. We introduce several temporal gates based on timed computational tree logic (TCTL) to capture absolute time behaviors of the system and to give concrete semantics to fault tree gates to reduce errors during the analysis, and use model checking technique to automate the reasoning process of FTA.

Preliminary safety evaluation for CSR1000 with passive safety system

International Nuclear Information System (INIS)

Wu, Pan; Gou, Junli; Shan, Jianqiang; Zhang, Bo; Li, Xiang

2014-01-01

Highlights: • The basic information of a Chinese SCWR concept CSR1000 is introduced. • An innovative passive safety system is proposed for CSR1000. • 6 Transients and 3 accidents are analysed with system code SCTRAN. • The passive safety systems greatly mitigate the consequences of these incidents. • The inherent safety of CSR1000 is enhanced. - Abstract: This paper describes the preliminary safety analysis of the Chinese Supercritical water cooled Reactor (CSR1000), which is proposed by Nuclear Power Institute of China (NPIC). The two-pass core design applied to CSR1000 decreases the fuel cladding temperature and flattens the power distribution of the core at normal operation condition. Each fuel assembly is made up of four sub-assemblies with downward-flow water rods, which is favorable to the core cooling during abnormal conditions due to the large water inventory of the water rods. Additionally, a passive safety system is proposed for CSR1000 to increase the safety reliability at abnormal conditions. In this paper, accidents of “pump seizure”, “loss of coolant flow accidents (LOFA)”, “core depressurization”, as well as some typical transients are analysed with code SCTRAN, which is a one-dimensional safety analysis code for SCWRs. The results indicate that the maximum cladding surface temperatures (MCST), which is the most important safety criterion, of the both passes in the mentioned incidents are all below the safety criterion by a large margin. The sensitivity analyses of the delay time of RCPs trip in “loss of offsite power” and the delay time of RMT actuation in “loss of coolant flowrate” were also included in this paper. The analyses have shown that the core design of CSR1000 is feasible and the proposed passive safety system is capable of mitigating the consequences of the selected abnormalities

Life-time management for mechanical components; Lebensdauermanagement mechanischer Komponenten

Energy Technology Data Exchange (ETDEWEB)

Roos, E. [Stuttgart Univ. (DE). Materialpruefungsanstalt (MPA)

2006-07-01

The safety and economic efficiency of industrial systems depend on the quality of components and systems. In the field of power generation, power plants should be safe and have high availability and minimum specific generation cost. Life management is essential for this. Depending on the safety relevance of systems, structures and components (SSC), this includes proofs of integrity, time-oriented or condition-oriented preventive maintenance, or just failure-oriented maintenance. (orig.)

Usage of Commercial Grade Programmable Digital Systems in Safety Related Applications

International Nuclear Information System (INIS)

Mandic, D.

2006-01-01

This paper explains methods and conditions, which if completely and correctly fulfilled, enable an operating NPP (Nuclear Power Plant) licensed and operating in accordance with the US codes and US regulatory requirements to use a commercial grade programmable digital device (PLC - Programmable Digital Controller, digital controller, digital computer or process computer) in a safety related application in a NPP. In mid 80's, when an intensive construction cycle of the new NPPs in the U.S.A. was completed, many equipment manufacturers either disappeared from the market or they abandoned their product lines that were designed and manufactured under 10 CFR Part 50 Appendix B quality assurance program. The quality assurance as defined by 10 CFR Part 50 Appendix B comprises all those planned and systematic actions necessary to provide adequate confidence that a Structure, System or Component (SSC) will perform satisfactorily in service . The operating NPPs faced the problem related to the availability of qualified equipment, components and spare parts. The US NRC (Nuclear Regulatory Commission) recognized that problem timely (Oct. 1978 revision of 10CFR21) and required a commercial grade item to be dedicated before it could be used as a basic component. A special process named Dedication of CGI - Commercial Grade Items if conducted properly, provides reasonable assurance that a commercial grade item to be used as a basic component will perform its intended safety related function and, in this respect, is deemed equivalent to an item designed and manufactured under 10 CFR Part 50 Appendix B. After that, the Dedication of CGI has been widely used mostly for relatively simple mechanical, electrical, and IandC components and spare parts. In order to provide guidance to the dedication process, EPRI has issued two documents (EPRI NP-5652 and Supplemental Guidance for EPRI NP-5652). All nuclear power plants, which comply with the US nuclear regulatory requirements, hindered as

Reliability analysis of PLC safety equipment

Energy Technology Data Exchange (ETDEWEB)

Yu, J.; Kim, J. Y. [Chungnam Nat. Univ., Daejeon (Korea, Republic of)

2006-06-15

FMEA analysis for Nuclear Safety Grade PLC, failure rate prediction for nuclear safety grade PLC, sensitivity analysis for components failure rate of nuclear safety grade PLC, unavailability analysis support for nuclear safety system.

Reliability analysis of PLC safety equipment

International Nuclear Information System (INIS)

Yu, J.; Kim, J. Y.

2006-06-01

FMEA analysis for Nuclear Safety Grade PLC, failure rate prediction for nuclear safety grade PLC, sensitivity analysis for components failure rate of nuclear safety grade PLC, unavailability analysis support for nuclear safety system

Reliability for systems of degrading components with distinct component shock sets

International Nuclear Information System (INIS)

Song, Sanling; Coit, David W.; Feng, Qianmei

2014-01-01

This paper studies reliability for multi-component systems subject to dependent competing risks of degradation wear and random shocks, with distinct shock sets. In practice, many systems are exposed to distinct and different types of shocks that can be categorized according to their sizes, function, affected components, etc. Previous research primarily focuses on simple systems with independent failure processes, systems with independent component time-to-failure, or components that share the same shock set or type of shocks. In our new model, we classify random shocks into different sets based on their sizes or function. Shocks with specific sizes or function can selectively affect one or more components in the system but not necessarily all components. Additionally the shocks from the different shock sets can arrive at different rates and have different relative magnitudes. Preventive maintenance (PM) optimization is conducted for the system with different component shock sets. Decision variables for two different maintenance scheduling problems, the PM replacement time interval, and the PM inspection time interval, are determined by minimizing a defined system cost rate. Sensitivity analysis is performed to provide insight into the behavior of the proposed maintenance policies. These models can be applied directly or customized for many complex systems that experience dependent competing failure processes with different component shock sets. A MEMS (Micro-electro mechanical systems) oscillator is a typical system subject to dependent and competing failure processes, and it is used as a numerical example to illustrate our new reliability and maintenance models

Damage Evaluation of Critical Components of Tilted Support Spring Nonlinear System under a Rectangular Pulse

Directory of Open Access Journals (Sweden)

Ningning Duan

2015-01-01

Full Text Available Dimensionless nonlinear dynamical equations of a tilted support spring nonlinear packaging system with critical components were obtained under a rectangular pulse. To evaluate the damage characteristics of shocks to packaged products with critical components, a concept of the damage boundary surface was presented and applied to a titled support spring system, with the dimensionless critical acceleration of the system, the dimensionless critical velocity, and the frequency parameter ratio of the system taken as the three basic parameters. Based on the numerical results, the effects of the frequency parameter ratio, the mass ratio, the dimensionless peak pulse acceleration, the angle of the system, and the damping ratio on the damage boundary surface of critical components were discussed. It was demonstrated that with the increase of the frequency parameter ratio, the decrease of the angle, and/or the increase of the mass ratio, the safety zone of critical components can be broadened, and increasing the dimensionless peak pulse acceleration or the damping ratio may lead to a decrease of the damage zone for critical components. The results may lead to a thorough understanding of the design principles for the tilted support spring nonlinear system.

Safety and reliability criteria

International Nuclear Information System (INIS)

O'Neil, R.

1978-01-01

Nuclear power plants and, in particular, reactor pressure boundary components have unique reliability requirements, in that usually no significant redundancy is possible, and a single failure can give rise to possible widespread core damage and fission product release. Reliability may be required for availability or safety reasons, but in the case of the pressure boundary and certain other systems safety may dominate. Possible Safety and Reliability (S and R) criteria are proposed which would produce acceptable reactor design. Without some S and R requirement the designer has no way of knowing how far he must go in analysing his system or component, or whether his proposed solution is likely to gain acceptance. The paper shows how reliability targets for given components and systems can be individually considered against the derived S and R criteria at the design and construction stage. Since in the case of nuclear pressure boundary components there is often very little direct experience on which to base reliability studies, relevant non-nuclear experience is examined. (author)

Component reliability for electronic systems

CERN Document Server

Bajenescu, Titu-Marius I

2010-01-01

The main reason for the premature breakdown of today's electronic products (computers, cars, tools, appliances, etc.) is the failure of the components used to build these products. Today professionals are looking for effective ways to minimize the degradation of electronic components to help ensure longer-lasting, more technically sound products and systems. This practical book offers engineers specific guidance on how to design more reliable components and build more reliable electronic systems. Professionals learn how to optimize a virtual component prototype, accurately monitor product reliability during the entire production process, and add the burn-in and selection procedures that are the most appropriate for the intended applications. Moreover, the book helps system designers ensure that all components are correctly applied, margins are adequate, wear-out failure modes are prevented during the expected duration of life, and system interfaces cannot lead to failure.

Research activities of MPA, Stuttgart University, for enhanced safety and reliability of components under complex load

International Nuclear Information System (INIS)

Herter, K.H.; Roos, E.; Schuler, X.; Maile, K.

2004-01-01

MPA research activities focus on fracture prevention and on the development of a generally applicable method of component integrity testing which, independent of the safety relevance of the components involved, is also part of ageing management. (orig.) [de

Ageing investigation and upgrading of components/systems of Kartini research reactor

Energy Technology Data Exchange (ETDEWEB)

Syarip,; Setiawan, Widi [Yogyakarta Nuclear Research Centre, Yogyakarta (Indonesia)

1998-10-01

Kartini research reactor has been operated in good condition and has demonstrated successful operation for the past 18 years, utilized for: reactor kinetic and control studies, instrumentation tests, neutronic and thermohydraulic studies, routine neutron activation analysis, reactor safety studies, training for research reactor operators and supervisors, and reactor physics experiments. Several components of Kartini reactor use components from the abandoned IRT-2000 Project at Serpong and from Bandung Reactor Centre such as: reactor tank, reactor core, heat exchanger, motor blower for ventilation system, fuel elements, etc. To maintain a good operating performance and also for aging investigation purposes, the component failure data collection has been done. The method used is based on the Manual on Reliability Data Collection For Research Reactor PSAs, IAEA TECDOC 636, and analyzed by using Data Entry System (DES) computer code. Analysis result shows that the components/systems failure rate of Kartini reactor is around 1,5.10{sup -4} up to 2,8.10{sup -4} per hour, these values are within the ranges of the values indicated in IAEA TECDOC 478. Whereas from the analysis of irradiation history shows that the neutron fluence of fuel element with highest burn-up (2,05 gram U-235 in average) is around 1.04.10{sup 16} n Cm{sup -2} and this value is still far below its limiting value. Some reactor components/systems have been replaced and upgraded such as heat exchanger, instrumentation and control system (ICS), etc. The new reactor ICS was installed in 1994 which is designed as a distributed structure by using microprocessor based systems and bus system technology. The characteristic and operating performance of the new reactor ICS, as well as the operation history and improvement of the Kartini research reactor is presented. (J.P.N.)

Advanced methods for the risk, vulnerability and resilience assessment of safety-critical engineering components, systems and infrastructures, in the presence of uncertainties

International Nuclear Information System (INIS)

Pedroni, Nicolas

2016-01-01

Safety-critical industrial installations (e.g., nuclear plants) and infrastructures (e.g., power transmission networks) are complex systems composed by a multitude and variety of heterogeneous 'elements', which are highly interconnected and mutually dependent. In addition, such systems are affected by large uncertainties in the characterization of the failure and recovery behavior of their components, interconnections and interactions. Such characteristics raise concerns with respect to the system risk, vulnerability and resilience properties, which have to be accurately and precisely assessed for decision making purposes. In general, this entails the following main steps: (1) representation of the system to capture its main features; (2) construction of a mathematical model of the system; (3) simulation of the behavior of the system under various uncertain conditions to evaluate the relevant risk, vulnerability and resilience metrics by propagating the uncertainties through the mathematical model; (4) decision making to (optimally) determine the set of protective actions to effectively reduce (resp., increase) the system risk and vulnerability (resp., resilience). New methods to address these issues have been developed in this dissertation. Specifically, the research works have been carried out along two main axes: (1) the study of approaches for uncertainty modeling and quantification; (2) the development of advanced computational methods for the efficient system modeling, simulation and analysis in the presence of uncertainties. (author)

The complementary roles of fracture mechanics and non-destructive examination in the safety assessment of components

International Nuclear Information System (INIS)

1988-01-01

This document presents the various speeches of the workshop of the Committee on Safety of Nuclear Installations (CSNI) that took place in Wuerenligen, Switzerland, in October 1988. The speeches deal with the roles of Non-Destructive Examination (NDE) and Fracture Mechanics (FM) in the safety assessment of reactor components, such as pressure vessels. Some calibration standards and reference values of defects are presented, and several NDE and FM methods for the assessment of components are described. Separate abstracts were prepared for all the papers in this volume. (TEC)

The complementary roles of fracture mechanics and non-destructive examination in the safety assessment of components

Energy Technology Data Exchange (ETDEWEB)

NONE

1988-12-31

This document presents the various speeches of the workshop of the Committee on Safety of Nuclear Installations (CSNI) that took place in Wuerenligen, Switzerland, in October 1988. The speeches deal with the roles of Non-Destructive Examination (NDE) and Fracture Mechanics (FM) in the safety assessment of reactor components, such as pressure vessels. Some calibration standards and reference values of defects are presented, and several NDE and FM methods for the assessment of components are described. Separate abstracts were prepared for all the papers in this volume. (TEC).

Does the concept of safety culture help or hinder systems thinking in safety?

Science.gov (United States)

Reiman, Teemu; Rollenhagen, Carl

2014-07-01

The concept of safety culture has become established in safety management applications in all major safety-critical domains. The idea that safety culture somehow represents a "systemic view" on safety is seldom explicitly spoken out, but nevertheless seem to linger behind many safety culture discourses. However, in this paper we argue that the "new" contribution to safety management from safety culture never really became integrated with classical engineering principles and concepts. This integration would have been necessary for the development of a more genuine systems-oriented view on safety; e.g. a conception of safety in which human, technological, organisational and cultural factors are understood as mutually interacting elements. Without of this integration, researchers and the users of the various tools and methods associated with safety culture have sometimes fostered a belief that "safety culture" in fact represents such a systemic view about safety. This belief is, however, not backed up by theoretical or empirical evidence. It is true that safety culture, at least in some sense, represents a holistic term-a totality of factors that include human, organisational and technological aspects. However, the departure for such safety culture models is still human and organisational factors rather than technology (or safety) itself. The aim of this paper is to critically review the various uses of the concept of safety culture as representing a systemic view on safety. The article will take a look at the concepts of culture and safety culture based on previous studies, and outlines in more detail the theoretical challenges in safety culture as a systems concept. The paper also presents recommendations on how to make safety culture more systemic. Copyright © 2013 Elsevier Ltd. All rights reserved.

The aviation safety reporting system

Science.gov (United States)

Reynard, W. D.

1984-01-01

The aviation safety reporting system, an accident reporting system, is presented. The system identifies deficiencies and discrepancies and the data it provides are used for long term identification of problems. Data for planning and policy making are provided. The system offers training in safety education to pilots. Data and information are drawn from the available data bases.

Effect of component aging on PWR control rod drive systems

International Nuclear Information System (INIS)

Grove, E.; Gunther, W.; Sullivan, K.

1992-01-01

An aging assessment of PWR control rod drive (CRD) systems has been completed as part of the US NRC Nuclear Plant Aging Research (NPAR) Program. The design, construction, maintenance, and operation of the Babcock ampersand Wilcox (B ampersand W), Combustion Engineering (CE), and Westinghouse (W) systems were evaluated to determine the potential for degradation as each system ages. Operating experience data were evaluated to identify the predominant failure modes, causes, and effects. This, coupled with an assessment of the materials of construction and operating environment, demonstrate that each design is subject to degradation, which if left unchecked, could affect its safety function as the plant ages. An industry survey, conducted with the assistance of EPRI and NUMARC, identified current CRD system maintenance and inspection practices. The results of this survey indicate that some plants have performed system modifications, replaced components, or augmented existing preventive maintenance practices in response to system aging. The survey results also supported the operating experience data, which concluded that the timely replacement of degraded components, prior to failure, was not always possible using existing condition monitoring techniques. The recommendations presented in this study also include a discussion of more advanced monitoring techniques, which provide trendable results capable of detecting aging

Nuclear power systems: Their safety. Current issue review

International Nuclear Information System (INIS)

Myers, L.C.

1994-04-01

Human beings utilize energy in many forms and from a variety of sources. A number of countries have chosen nuclear-electric generation as a component of their energy system. At the end of 1992, there were 419 power reactors operating in 29 countries, accounting for more than 15% of the world's production of electricity. In 1992, 13 countries derived at least 25% of their electricity from nuclear units, with Lithuania leading at just over 78%, followed closely by France at 72%. In the same year, Canada produced about 16% of its electricity from nuclear units. Some 53 power reactors are under construction in 14 countries outside the former USSR. Within the ex-USSR countries, six new reactors are currently under construction. No human endeavour carries the guarantee of perfect safety and the question of whether of not nuclear-electric generation represents an 'acceptable' risk to society has long been vigorously debated. Until the events of late April 1986 in the then Soviet Union, nuclear safety had indeed been an issue for discussion, for some concern, but not for alarm. The accident at the Chernobyl reactor irrevocably changed all that. This disaster brought the matter of nuclear safety into the public mind in a dramatic fashion. Subsequent opening of the ex-Soviet nuclear power program to outside scrutiny has done little to calm people's concerns about the safety of nuclear power in that part of the world. This paper discusses the issue of safety in complex energy systems and provides brief accounts of some of the most serious reactor accidents that have occurred to date, as well as more recent, less dramatic events touching on the safety issue. (author). 7 refs

Reliability analysis and component functional allocations for the ESF multi-loop controller design

International Nuclear Information System (INIS)

Hur, Seop; Kim, D.H.; Choi, J.K.; Park, J.C.; Seong, S.H.; Lee, D.Y.

2006-01-01

This paper deals with the reliability analysis and component functional allocations to ensure the enhanced system reliability and availability. In the Engineered Safety Features, functionally dependent components are controlled by a multi-loop controller. The system reliability of the Engineered Safety Features-Component Control System, especially, the multi-loop controller which is changed comparing to the conventional controllers is an important factor for the Probability Safety Assessment in the nuclear field. To evaluate the multi-loop controller's failure rate of the k-out-of-m redundant system, the binomial process is used. In addition, the component functional allocation is performed to tolerate a single multi-loop controller failure without the loss of vital operation within the constraints of the piping and component configuration, and ensure that mechanically redundant components remain functional. (author)

NASA Aviation Safety Reporting System (ASRS)

Science.gov (United States)

Connell, Linda J.

2017-01-01

The NASA Aviation Safety Reporting System (ASRS) collects, analyzes, and distributes de-identified safety information provided through confidentially submitted reports from frontline aviation personnel. Since its inception in 1976, the ASRS has collected over 1.4 million reports and has never breached the identity of the people sharing their information about events or safety issues. From this volume of data, the ASRS has released over 6,000 aviation safety alerts concerning potential hazards and safety concerns. The ASRS processes these reports, evaluates the information, and provides selected de-identified report information through the online ASRS Database at http:asrs.arc.nasa.gov. The NASA ASRS is also a founding member of the International Confidential Aviation Safety Systems (ICASS) group which is a collection of other national aviation reporting systems throughout the world. The ASRS model has also been replicated for application to improving safety in railroad, medical, fire fighting, and other domains. This presentation will discuss confidential, voluntary, and non-punitive reporting systems and their advantages in providing information for safety improvements.

Dynamic modeling of the tradeoff between productivity and safety in critical engineering systems

International Nuclear Information System (INIS)

Cowing, Michelle M.; Elisabeth Pate-Cornell, M.; Glynn, Peter W.

2004-01-01

Short-term tradeoffs between productivity and safety often exist in the operation of critical facilities such as nuclear power plants, offshore oil platforms, or simply individual cars. For example, interruption of operations for maintenance on demand can decrease short-term productivity but may be needed to ensure safety. Operations are interrupted for several reasons: scheduled maintenance, maintenance on demand, response to warnings, subsystem failure, or a catastrophic accident. The choice of operational procedures (e.g. timing and extent of scheduled maintenance) generally affects the probabilities of both production interruptions and catastrophic failures. In this paper, we present and illustrate a dynamic probabilistic model designed to describe the long-term evolution of such a system through the different phases of operation, shutdown, and possibly accident. The model's parameters represent explicitly the effects of different components' performance on the system's safety and reliability through an engineering probabilistic risk assessment (PRA). In addition to PRA, a Markov model is used to track the evolution of the system and its components through different performance phases. The model parameters are then linked to different operations strategies, to allow computation of the effects of each management strategy on the system's long-term productivity and safety. Decision analysis is then used to support the management of the short-term trade-offs between productivity and safety in order to maximize long-term performance. The value function is that of plant managers, within the constraints set by local utility commissions and national (e.g. energy) agencies. This model is illustrated by the case of outages (planned and unplanned) in nuclear power plants to show how it can be used to guide policy decisions regarding outage frequency and plant lifetime, and more specifically, the choice of a reactor tripping policy as a function of the state of the

Conceptual design of heat transport systems and components of PFBR-NSSS

International Nuclear Information System (INIS)

Chetal, S.C.; Bhoje, S.B.; Kale, R.D.; Rao, A.S.L.K.; Mitra, T.K.; Selvaraj, A.; Sethi, V.K.; Sundaramoorthy, T.R.; Balasubramaniyan, V.; Vaidyanathan, G.

1996-01-01

The production of electrical power from sodium cooled fast reactors in the present power scenario in India demands emphasis on plant economics consistent with safety. Number of heat transport systems/components and the design of principal heat transport components viz sodium pumps, IHX and steam generators play significant role in the plant capital cost and capacity factor. The paper discusses the basis of selection of 2 primary pumps, 4 IHX, 2 secondary loops, 2 secondary pumps and 8 steam generators for the 500 MWe Prototype Fast Breeder Reactor (PFBR), which is now in design stage. The principal design features of primary pump, IHX and steam generator have been selected based on design simplicity, ease of manufacture and utilization of established designs. The paper also describes the conceptual design of above mentioned three components. (author). 3 figs, 2 tabs

Software for computer based systems important to safety in nuclear power plants. Safety guide

International Nuclear Information System (INIS)

2004-01-01

Computer based systems are of increasing importance to safety in nuclear power plants as their use in both new and older plants is rapidly increasing. They are used both in safety related applications, such as some functions of the process control and monitoring systems, as well as in safety critical applications, such as reactor protection or actuation of safety features. The dependability of computer based systems important to safety is therefore of prime interest and should be ensured. With current technology, it is possible in principle to develop computer based instrumentation and control systems for systems important to safety that have the potential for improving the level of safety and reliability with sufficient dependability. However, their dependability can be predicted and demonstrated only if a systematic, fully documented and reviewable engineering process is followed. Although a number of national and international standards dealing with quality assurance for computer based systems important to safety have been or are being prepared, internationally agreed criteria for demonstrating the safety of such systems are not generally available. It is recognized that there may be other ways of providing the necessary safety demonstration than those recommended here. The basic requirements for the design of safety systems for nuclear power plants are provided in the Requirements for Design issued in the IAEA Safety Standards Series.The IAEA has issued a Technical Report to assist Member States in ensuring that computer based systems important to safety in nuclear power plants are safe and properly licensed. The report provides information on current software engineering practices and, together with relevant standards, forms a technical basis for this Safety Guide. The objective of this Safety Guide is to provide guidance on the collection of evidence and preparation of documentation to be used in the safety demonstration for the software for computer based

Software for computer based systems important to safety in nuclear power plants. Safety guide

International Nuclear Information System (INIS)

2005-01-01

Computer based systems are of increasing importance to safety in nuclear power plants as their use in both new and older plants is rapidly increasing. They are used both in safety related applications, such as some functions of the process control and monitoring systems, as well as in safety critical applications, such as reactor protection or actuation of safety features. The dependability of computer based systems important to safety is therefore of prime interest and should be ensured. With current technology, it is possible in principle to develop computer based instrumentation and control systems for systems important to safety that have the potential for improving the level of safety and reliability with sufficient dependability. However, their dependability can be predicted and demonstrated only if a systematic, fully documented and reviewable engineering process is followed. Although a number of national and international standards dealing with quality assurance for computer based systems important to safety have been or are being prepared, internationally agreed criteria for demonstrating the safety of such systems are not generally available. It is recognized that there may be other ways of providing the necessary safety demonstration than those recommended here. The basic requirements for the design of safety systems for nuclear power plants are provided in the Requirements for Design issued in the IAEA Safety Standards Series.The IAEA has issued a Technical Report to assist Member States in ensuring that computer based systems important to safety in nuclear power plants are safe and properly licensed. The report provides information on current software engineering practices and, together with relevant standards, forms a technical basis for this Safety Guide. The objective of this Safety Guide is to provide guidance on the collection of evidence and preparation of documentation to be used in the safety demonstration for the software for computer based

Software for computer based systems important to safety in nuclear power plants. Safety guide