WorldWideScience

Sample records for system safety analysis

  1. System safety engineering analysis handbook

    Science.gov (United States)

    Ijams, T. E.

    1972-01-01

    The basic requirements and guidelines for the preparation of System Safety Engineering Analysis are presented. The philosophy of System Safety and the various analytic methods available to the engineering profession are discussed. A text-book description of each of the methods is included.

  2. Safety balance: Analysis of safety systems

    International Nuclear Information System (INIS)

    Delage, M.; Giroux, C.

    1990-12-01

    Safety analysis, and particularly analysis of exploitation of NPPs is constantly affected by EDF and by the safety authorities and their methodologies. Periodic safety reports ensure that important issues are not missed on daily basis, that incidents are identified and that relevant actions are undertaken. French safety analysis method consists of three principal steps. First type of safety balance is analyzed at the normal start-up phase for each unit including the final safety report. This enables analysis of behaviour of units ten years after their licensing. Second type is periodic operational safety analysis performed during a few years. Finally, the third step consists of safety analysis of the oldest units with the aim to improve the safety standards. The three steps of safety analysis are described in this presentation in detail with the aim to present the objectives and principles. Examples of most recent exercises are included in order to illustrate the importance of such analyses

  3. Automation for System Safety Analysis

    Science.gov (United States)

    Malin, Jane T.; Fleming, Land; Throop, David; Thronesbery, Carroll; Flores, Joshua; Bennett, Ted; Wennberg, Paul

    2009-01-01

    This presentation describes work to integrate a set of tools to support early model-based analysis of failures and hazards due to system-software interactions. The tools perform and assist analysts in the following tasks: 1) extract model parts from text for architecture and safety/hazard models; 2) combine the parts with library information to develop the models for visualization and analysis; 3) perform graph analysis and simulation to identify and evaluate possible paths from hazard sources to vulnerable entities and functions, in nominal and anomalous system-software configurations and scenarios; and 4) identify resulting candidate scenarios for software integration testing. There has been significant technical progress in model extraction from Orion program text sources, architecture model derivation (components and connections) and documentation of extraction sources. Models have been derived from Internal Interface Requirements Documents (IIRDs) and FMEA documents. Linguistic text processing is used to extract model parts and relationships, and the Aerospace Ontology also aids automated model development from the extracted information. Visualizations of these models assist analysts in requirements overview and in checking consistency and completeness.

  4. Systems engineered health and safety criteria for safety analysis reports

    International Nuclear Information System (INIS)

    Beitel, G.A.; Morcos, N.

    1993-01-01

    The world of safety analysis is filled with ambiguous words: codes and standards, consequences and risks, hazard and accident, and health and safety. These words have been subject to disparate interpretations by safety analysis report (SAR) writers, readers, and users. open-quotes Principal health and safety criteriaclose quotes has been one of the most frequently misused phrases; rarely is it used consistently or effectively. This paper offers an easily understood definition for open-quotes principal health and safety criteriaclose quotes and uses systems engineering to convert an otherwise mysterious topic into the primary means of producing an integrated SAR. This paper is based on SARs being written for environmental restoration and waste management activities for the U.S. Department of Energy (DOE). Requirements for these SARs are prescribed in DOE Order 5480-23, open-quotes Nuclear Safety Analysis Reports.close quotes

  5. Reliability analysis of Angra I safety systems

    International Nuclear Information System (INIS)

    Oliveira, L.F.S. de; Soto, J.B.; Maciel, C.C.; Gibelli, S.M.O.; Fleming, P.V.; Arrieta, L.A.

    1980-07-01

    An extensive reliability analysis of some safety systems of Angra I, are presented. The fault tree technique, which has been successfully used in most reliability studies of nuclear safety systems performed to date is employed. Results of a quantitative determination of the unvailability of the accumulator and the containment spray injection systems are presented. These results are also compared to those reported in WASH-1400. (E.G.) [pt

  6. Cost benefit analysis of reactor safety systems

    International Nuclear Information System (INIS)

    Maurer, H.A.

    1984-01-01

    Cost/benefit analysis of reactor safety systems is a possibility appropriate to deal with reactor safety. The Commission of the European Communities supported a study on the cost-benefit or cost effectiveness of safety systems installed in modern PWR nuclear power plants. The following systems and their cooperation in emergency cases were in particular investigated in this study: the containment system (double containment), the leakage exhaust and control system, the annulus release exhaust system and the containment spray system. The benefit of a safety system is defined according to its contribution to the reduction of the radiological consequences for the environment after a LOCA. The analysis is so far performed in two different steps: the emergency core cooling system is considered to function properly, failure of the emergency core cooling system is assumed (with the possible consequence of core melt-down) and the results may demonstrate the evidence that striving for cost-effectiveness can produce a safer end result than the philosophy of safety at any cost. (orig.)

  7. Safety analysis of accident localization system

    International Nuclear Information System (INIS)

    1999-01-01

    A complex safety analysis of accident localization system of Ignalina NPP was performed. Calculation results obtained, results of non-destruct ing testing and experimental data of reinforced concrete testing of buildings does not revealed deficiencies of buildings of accident localization system at unit 1 of Ignalina NPP. Calculations were performed using codes NEPTUNE, ALGOR, CONTAIN

  8. DESIGN PACKAGE 1E SYSTEM SAFETY ANALYSIS

    Energy Technology Data Exchange (ETDEWEB)

    M. Salem

    1995-06-23

    The purpose of this analysis is to systematically identify and evaluate hazards related to the Yucca Mountain Project Exploratory Studies Facility (ESF) Design Package 1E, Surface Facilities, (for a list of design items included in the package 1E system safety analysis see section 3). This process is an integral part of the systems engineering process; whereby safety is considered during planning, design, testing, and construction. A largely qualitative approach was used since a radiological System Safety Analysis is not required. The risk assessment in this analysis characterizes the accident scenarios associated with the Design Package 1E structures/systems/components(S/S/Cs) in terms of relative risk and includes recommendations for mitigating all identified risks. The priority for recommending and implementing mitigation control features is: (1) Incorporate measures to reduce risks and hazards into the structure/system/component design, (2) add safety devices and capabilities to the designs that reduce risk, (3) provide devices that detect and warn personnel of hazardous conditions, and (4) develop procedures and conduct training to increase worker awareness of potential hazards, on methods to reduce exposure to hazards, and on the actions required to avoid accidents or correct hazardous conditions.

  9. K West integrated water treatment system subproject safety analysis document

    International Nuclear Information System (INIS)

    SEMMENS, L.S.

    1999-01-01

    This Accident Analysis evaluates unmitigated accident scenarios, and identifies Safety Significant and Safety Class structures, systems, and components for the K West Integrated Water Treatment System

  10. K West integrated water treatment system subproject safety analysis document

    Energy Technology Data Exchange (ETDEWEB)

    SEMMENS, L.S.

    1999-02-24

    This Accident Analysis evaluates unmitigated accident scenarios, and identifies Safety Significant and Safety Class structures, systems, and components for the K West Integrated Water Treatment System.

  11. Qualitative safety analysis in accelerator based systems

    International Nuclear Information System (INIS)

    Sarkar, P.K.; Chowdhury, Lekha M.

    2006-01-01

    In recent developments connected to high energy and high current accelerators, the accelerator driven systems (ADS) and the Radioactive Ion Beam (RIB) facilities come in the forefront of application. For medical and industrial applications high current accelerators often need to be located in populated areas. These facilities pose significant radiological hazard during their operation and accidental situations. We have done a qualitative evaluation of radiological safety analysis using the probabilistic safety analysis (PSA) methods for accelerator-based systems. The major contribution to hazard comes from a target rupture scenario in both ADS and RIB facilities. Other significant contributors to hazard in the facilities are also discussed using fault tree and event tree methodologies. (author)

  12. System analysis of vehicle active safety problem

    Science.gov (United States)

    Buznikov, S. E.

    2018-02-01

    The problem of the road transport safety affects the vital interests of the most of the population and is characterized by a global level of significance. The system analysis of problem of creation of competitive active vehicle safety systems is presented as an interrelated complex of tasks of multi-criterion optimization and dynamic stabilization of the state variables of a controlled object. Solving them requires generation of all possible variants of technical solutions within the software and hardware domains and synthesis of the control, which is close to optimum. For implementing the task of the system analysis the Zwicky “morphological box” method is used. Creation of comprehensive active safety systems involves solution of the problem of preventing typical collisions. For solving it, a structured set of collisions is introduced with its elements being generated also using the Zwicky “morphological box” method. The obstacle speed, the longitudinal acceleration of the controlled object and the unpredictable changes in its movement direction due to certain faults, the road surface condition and the control errors are taken as structure variables that characterize the conditions of collisions. The conditions for preventing typical collisions are presented as inequalities for physical variables that define the state vector of the object and its dynamic limits.

  13. ESSAA: Embedded system safety analysis assistant

    Science.gov (United States)

    Wallace, Peter; Holzer, Joseph; Guarro, Sergio; Hyatt, Larry

    1987-01-01

    The Embedded System Safety Analysis Assistant (ESSAA) is a knowledge-based tool that can assist in identifying disaster scenarios. Imbedded software issues hazardous control commands to the surrounding hardware. ESSAA is intended to work from outputs to inputs, as a complement to simulation and verification methods. Rather than treating the software in isolation, it examines the context in which the software is to be deployed. Given a specified disasterous outcome, ESSAA works from a qualitative, abstract model of the complete system to infer sets of environmental conditions and/or failures that could cause a disasterous outcome. The scenarios can then be examined in depth for plausibility using existing techniques.

  14. The adaptive safety analysis and monitoring system

    Science.gov (United States)

    Tu, Haiying; Allanach, Jeffrey; Singh, Satnam; Pattipati, Krishna R.; Willett, Peter

    2004-09-01

    The Adaptive Safety Analysis and Monitoring (ASAM) system is a hybrid model-based software tool for assisting intelligence analysts to identify terrorist threats, to predict possible evolution of the terrorist activities, and to suggest strategies for countering terrorism. The ASAM system provides a distributed processing structure for gathering, sharing, understanding, and using information to assess and predict terrorist network states. In combination with counter-terrorist network models, it can also suggest feasible actions to inhibit potential terrorist threats. In this paper, we will introduce the architecture of the ASAM system, and discuss the hybrid modeling approach embedded in it, viz., Hidden Markov Models (HMMs) to detect and provide soft evidence on the states of terrorist network nodes based on partial and imperfect observations, and Bayesian networks (BNs) to integrate soft evidence from multiple HMMs. The functionality of the ASAM system is illustrated by way of application to the Indian Airlines Hijacking, as modeled from open sources.

  15. Safety Analysis for Power Reactor Protection System

    International Nuclear Information System (INIS)

    Eisawy, E.A.; Sallam, H.

    2012-01-01

    The main function of a Reactor Protection System (RPS) is to safely shutdown the reactor and prevents the release of radioactive materials. The purpose of this paper is to present a technique and its application for used in the analysis of safety system of the Nuclear Power Plant (NPP). A more advanced technique has been presented to accurately study such problems as the plant availability assessments and Technical Specifications evaluations that are becoming increasingly important. The paper provides the Markov model for the Reactor Protection System of the NPP and presents results of model evaluations for two testing policies in technical specifications. The quantification of the Markov model provides the probability values that the system will occupy each of the possible states as a function of time.

  16. Short course on system safety analysis

    International Nuclear Information System (INIS)

    Sudmann, R.H.

    1992-01-01

    This course provides and introduction to methods generally used in safety analysis and accident investigation. It is a non-mathematical approach, directed toward a casual user. The participant will learn techniques allowing them to dissect a system or incident in order identify real or potential safety problems. These techniques will be applied to analyze events which have occurred within DOE facilities. As a manager or staff person with general oversight responsibilities, the participant should gain an awareness of the big picture and not just ''dig for facts.'' This can be accomplished by being alert and responsive to the atmosphere and condition of the plant; mood and impression of the worker and the behavioral climate. The techniques taught in the course can be used to identify critical areas or indicators. These indicators will signal problems before the ''facts'' will. Analysis techniques taught are used to gauge the breadth of the ''forest'' and not necessarily to identify the trees. For this course includes a technical background with experience in a chemical processing operations and a knowledge of basic chemistry and engineering is desirable. The course should help in a present or future assignment in an oversight role

  17. Safety Analysis of Stochastic Dynamical Systems

    DEFF Research Database (Denmark)

    Sloth, Christoffer; Wisniewski, Rafael

    2015-01-01

    This paper presents a method for verifying the safety of a stochastic system. In particular, we show how to compute the largest set of initial conditions such that a given stochastic system is safe with probability p. To compute the set of initial conditions we rely on the moment method that via...... that shows how the p-safe initial set is computed numerically....

  18. Safety analysis of reactor's cooling system

    International Nuclear Information System (INIS)

    1999-01-01

    Results of the analysis of reactor's RBMK-1500 coolant system during normal operation mode, hydrodynamic testing and in the case of earthquake are presented. Analysis was performed using RELAP5 code. Calculations showed the most vulnerable place in the reactor's coolant system. It was found that in the case of earthquake the horizontal support system of drum separator could be damaged

  19. Establishment of Safety Analysis System and Technology for CANDU Reactors

    International Nuclear Information System (INIS)

    Min, Byung Joo; Kim, W. Y.; Kim, H. T.; Rhee, B. W.; Yoon, C.; Kang, H. S.; Yoo, K. J.

    2005-03-01

    To improve the CANDU design/operation safety analysis codes and the CANDU safety analysis methodology, the following works have been done. From the development of the lattice codes (WIMS/CANDU), the lattice model simulates the real core lattice geometry and the effect of the pressure tube creep to the core lattice parameter has been evaluated. From the development of the 3-dimensional thermal-hydraulic analysis model of the moderator behavior (CFX4-CAMO), validation of the model against STERN Lab experiment has been executed. The butterfly-shaped grid structure and the 3-dimensional flow resistance model for porous media were developed and applied to the moderator analysis for Wolsong units 2/3/4. The single fuel channel analysis codes for blowdown and post-blowdown were unified by CATHENA. The 3-dimensional fuel channel analysis model (CFX-CACH) has been developed for validation of CATHENA fuel channel analysis model. The interlinking analysis system (CANVAS) of the thermal-hydraulic safety analysis codes for the primary heat transport system and containment system has been executed. The database system of core physics and thermal-hydraulics experimental data for safety analysis has been established on the URL: http://CANTHIS.kaeri.re.kr. For documentation and Standardization of the general safety analysis procedure, the general safety analysis procedure is developed and applied to a large break LOCA. The present research results can be utilized for establishment of the independent safety analysis technology and acquisition of the optimal safety analysis technology

  20. Risk and safety analysis of nuclear systems

    National Research Council Canada - National Science Library

    Lee, John C; McCormick, Norman J

    2011-01-01

    ...), and failure modes of systems. All of this material is general enough that it could be used in non-nuclear applications, although there is an emphasis placed on the analysis of nuclear systems...

  1. Establishment of Safety Analysis System and Technology for CANDU Reactors

    International Nuclear Information System (INIS)

    Park, Joo Hwan; Rhee, B. W.; Min, B. J.; Kim, H. T.; Kim, W. Y.; Yoon, C.; Chun, J. S.; Cho, M. S.; Jeong, J. Y.; Kang, H. S.

    2007-06-01

    The following 4 research items have been studied to establish a CANDU safety analysis system and to develop the relevant elementary technology for CANDU reactors. First, to improve and validate the CANDU design and operational safety analysis codes, the CANDU physics cell code WIMS-CANDU was improved, and validated, and an analysis of the moderator subcooling and pressure tube integrity has been performed for the large break LOCAs without ECCS. Also a CATHENA model and a CFD model for a post-blowdown fuel channel analysis have been developed and validated against two high temperature thermal-chemical experiments, CS28-1 and 2. Second, to improve the integrated operating system of the CANDU safety analysis codes, an extension has been made to them to include the core and fuel accident analyses, and a web-based CANDU database, CANTHIS version 2.0 was completed. Third, to assess the applicability of the ACR-7 safety analysis methodology to CANDU-6 the ACR-7 safety analysis methods were reviewed and the safety analysis methods of ACR-7 applicable to CANDU-6 were recommended. Last, to supplement and improve the existing CANDU safety analysis procedures, detailed analysis procedures have been prepared for individual accident scenarios. The results of this study can be used to resolve the CANDU safety issues, to improve the current design and operational safety analysis codes, and to technically support the Wolsong site to resolve their problems

  2. Risk and safety analysis of nuclear systems

    National Research Council Canada - National Science Library

    Lee, John C; McCormick, Norman J

    2011-01-01

    .... The first half of the book covers the principles of risk analysis, the techniques used to develop and update a reliability data base, the reliability of multi-component systems, Markov methods used...

  3. Risk and safety analysis of nuclear systems

    CERN Document Server

    Lee, John C

    2011-01-01

    The book has been developed in conjunction with NERS 462, a course offered every year to seniors and graduate students in the University of Michigan NERS program. The first half of the book covers the principles of risk analysis, the techniques used to develop and update a reliability data base, the reliability of multi-component systems, Markov methods used to analyze the unavailability of systems with repairs, fault trees and event trees used in probabilistic risk assessments (PRAs), and failure modes of systems. All of this material is general enough that it could be used in non-nuclear a

  4. Safety systems and safety analysis of the Qinshan phase III CANDU nuclear power plant

    International Nuclear Information System (INIS)

    Cai Jianping; Shen Sen; Barkman, N.

    1999-01-01

    The author introduces the Canadian nuclear reactor safety philosophy and the Qinshan Phase III CANDU NPP safety systems and safety analysis, which are designed and performed according to this philosophy. The concept of 'defence-in-depth' is a key element of the Canadian nuclear reactor safety philosophy. The design concepts of redundancy, diversity, separation, equipment qualification, quality assurance, and use of appropriate design codes and standards are adopted in the design. Four special safety systems as well as a set of reliable safety support systems are incorporated in the design of Qinshan phase III CANDU for accident mitigation. The assessment results for safety systems performance show that the fundamental safety criteria for public dose, and integrity of fuel, channels and the reactor building, are satisfied

  5. CONACS: the DOE safety analysis system

    International Nuclear Information System (INIS)

    Martin, F.J.; Armstrong, G.R.; Niccoli, L.G.

    1985-03-01

    The CONtainment Analysis Code System (CONACS) is a large, comprehensive scientific simulation system for predicting conditions in an LMR facility following the occurrence of a postulated accident. It has now been developed to a stage of completion that can be referred to as a limited operational version. This version forms a permanent portion of the ultimate system. Because CONACS was developed with change in mind, it is now possible to draw on this strength to respond to changing requirements arising from advanced design concepts. The generalized design applications in the nuclear and non-nuclear fields and the quality assurance applied to the project make those adaptations reliable. In this paper the results of prototype tests and the implications of limited version tests are presented along with a brief description of CONACS and its relationship to LMR design optimization and cost reduction

  6. CONACS, the DOE safety analysis system

    International Nuclear Information System (INIS)

    Martin, F.J.; Armstrong, G.R.; Niccoli, L.G.

    1985-01-01

    The CONtainment Analysis Code System (CONACS) is a large, comprehensive scientific simulation system for predicting conditions in an LMR facility following the occurrence of a postulated accident. It has now been developed to a stage of completion that can be referred to as a limited operational version. This version forms a permanent portion of the ultimate system. Because CONACS was developed with change in mind it is now possible to draw on this strength to respond to changing requirements arising from advanced design concepts. The generalized design applications in the nuclear and non-nuclear fields and the quality assurance applied to the project make those adaptations reliable. In this paper the results of prototype tests and the implications of limited version tests are presented along with a brief description of CONACS and its relationship to LMR design optimization and cost reduction

  7. Systems Analysis of NASA Aviation Safety Program: Final Report

    Science.gov (United States)

    Jones, Sharon M.; Reveley, Mary S.; Withrow, Colleen A.; Evans, Joni K.; Barr, Lawrence; Leone, Karen

    2013-01-01

    A three-month study (February to April 2010) of the NASA Aviation Safety (AvSafe) program was conducted. This study comprised three components: (1) a statistical analysis of currently available civilian subsonic aircraft data from the National Transportation Safety Board (NTSB), the Federal Aviation Administration (FAA), and the Aviation Safety Information Analysis and Sharing (ASIAS) system to identify any significant or overlooked aviation safety issues; (2) a high-level qualitative identification of future safety risks, with an assessment of the potential impact of the NASA AvSafe research on the National Airspace System (NAS) based on these risks; and (3) a detailed, top-down analysis of the NASA AvSafe program using an established and peer-reviewed systems analysis methodology. The statistical analysis identified the top aviation "tall poles" based on NTSB accident and FAA incident data from 1997 to 2006. A separate examination of medical helicopter accidents in the United States was also conducted. Multiple external sources were used to develop a compilation of ten "tall poles" in future safety issues/risks. The top-down analysis of the AvSafe was conducted by using a modification of the Gibson methodology. Of the 17 challenging safety issues that were identified, 11 were directly addressed by the AvSafe program research portfolio.

  8. Computational methods for criticality safety analysis within the scale system

    International Nuclear Information System (INIS)

    Parks, C.V.; Petrie, L.M.; Landers, N.F.; Bucholz, J.A.

    1986-01-01

    The criticality safety analysis capabilities within the SCALE system are centered around the Monte Carlo codes KENO IV and KENO V.a, which are both included in SCALE as functional modules. The XSDRNPM-S module is also an important tool within SCALE for obtaining multiplication factors for one-dimensional system models. This paper reviews the features and modeling capabilities of these codes along with their implementation within the Criticality Safety Analysis Sequences (CSAS) of SCALE. The CSAS modules provide automated cross-section processing and user-friendly input that allow criticality safety analyses to be done in an efficient and accurate manner. 14 refs., 2 figs., 3 tabs

  9. Safety analysis and evaluation methodology for fusion systems

    International Nuclear Information System (INIS)

    Fujii-e, Y.; Kozawa, Y.; Namba, C.

    1987-03-01

    Fusion systems which are under development as future energy systems have reached a stage that the break even is expected to be realized in the near future. It is desirable to demonstrate that fusion systems are well acceptable to the societal environment. There are three crucial viewpoints to measure the acceptability, that is, technological feasibility, economy and safety. These three points have close interrelation. The safety problem is more important since three large scale tokamaks, JET, TFTR and JT-60, start experiment, and tritium will be introduced into some of them as the fusion fuel. It is desirable to establish a methodology to resolve the safety-related issues in harmony with the technological evolution. The promising fusion system toward reactors is not yet settled. This study has the objective to develop and adequate methodology which promotes the safety design of general fusion systems and to present a basis for proposing the R and D themes and establishing the data base. A framework of the methodology, the understanding and modeling of fusion systems, the principle of ensuring safety, the safety analysis based on the function and the application of the methodology are discussed. As the result of this study, the methodology for the safety analysis and evaluation of fusion systems was developed. New idea and approach were presented in the course of the methodology development. (Kako, I.)

  10. Safety analysis of tritium processing system based on PHA

    International Nuclear Information System (INIS)

    Fu Wanfa; Luo Deli; Tang Tao

    2012-01-01

    Safety analysis on primary confinement of tritium processing system for TBM was carried out with Preliminary Hazard Analysis. Firstly, the basic PHA process was given. Then the function and safe measures with multiple confinements about tritium system were described and analyzed briefly, dividing the two kinds of boundaries of tritium transferring through, that are multiple confinement systems division and fluid loops division. Analysis on tritium releasing is the key of PHA. Besides, PHA table about tritium releasing was put forward, the causes and harmful results being analyzed, and the safety measures were put forward also. On the basis of PHA, several kinds of typical accidents were supposed to be further analyzed. And 8 factors influencing the tritium safety were analyzed, laying the foundation of evaluating quantitatively the safety grade of various nuclear facilities. (authors)

  11. LOFT integral test system final safety analysis report

    International Nuclear Information System (INIS)

    1974-03-01

    Safety analyses are presented for the following LOFT Reactor systems: engineering safety features; support buildings and facilities; instrumentation and controls; electrical systems; and auxiliary systems. (JWR)

  12. LOCA analysis of SCWR-M with passive safety system

    Energy Technology Data Exchange (ETDEWEB)

    Liu, X.J., E-mail: xiaojingliu@sjtu.edu.cn [School of Nuclear Science and Engineering, Shanghai Jiao Tong University, 800 Dong Chuan Road, Shanghai 200240 (China); Fu, S.W. [Navy University of Engineering, Wuhan, Hubei (China); Xu, Z.H. [Shanghai Nuclear Engineering Research and Design Institute, Shanghai (China); Yang, Y.H. [School of Nuclear Science and Engineering, Shanghai Jiao Tong University, 800 Dong Chuan Road, Shanghai 200240 (China); Cheng, X. [Institute of Fusion and Nuclear Technology, Karlsruhe Institute of Technology (KIT), Kaiserstr. 12, 76131 Karlsruhe (Germany)

    2013-06-15

    Highlights: • Application of the ATHLET-SC code to the trans-critical analysis for SCWR. • Development of a passive safety system for SCWR-M. • Analysis of hot/cold leg LOCA behaviour with different break size. • Introduction of some mitigation measures for SCWR-M -- Abstract: A new SCWR conceptual design (mixed spectrum supercritical water cooled reactor: SCWR-M) is proposed by Shanghai Jiao Tong University (SJTU). R and D activities covering core design, safety system design and code development of SCWR-M are launched at SJTU. Safety system design and analysis is one of the key tasks during the development of SCWR-M. Considering the current advanced reactor design, a new passive safety system for SCWR-M including isolation cooling system (ICS), accumulator injection system (ACC), gravity driven cooling system (GDCS) and automatic depressurization system (ADS) is proposed. Based on the modified and preliminarily assessed system code ATHLET-SC, loss of coolant accident (LOCA) analysis for hot and cold leg is performed in this paper. Three different break sizes are analyzed to clarify the hot and cold LOCA characteristics of the SCWR-M. The influence of the break location and break size on the safety performance of SCWR-M is also concluded. Several measures to induce the core coolant flow and to mitigate core heating up are also discussed. The results achieved so far demonstrate the feasibility of the proposed passive safety system to keep the SCWR-M core at safety condition during loss of coolant accident.

  13. Development of design and safety analysis supporting system for casks

    International Nuclear Information System (INIS)

    Ohsono, Katsunari; Higashino, Akira; Endoh, Shuji

    1993-01-01

    Mitsubishi heavy Industries has developed a design and safety analysis supporting system 'CADDIE' (Cask Computer Aided Design, Drawing and Integrated Evaluation System), with the following objectives: (1) Enhancement of efficiency of the design and safety analysis (2) Further advancement of design quality (3) Response to the diversification of design requirements. The features of this system are as follows: (1) The analysis model data common to analyses is established, and it is prepared automatically from the model made by CAD. (2) The input data for the analysis code is available by simple operation of conversation type from the analysis model data. (3) The analysis results are drawn out in diagrams by output generator, so as to facilitate easy observation. (4) The data of material properties, fuel assembly data, etc. required for the analyses are made available as a data base. (J.P.N.)

  14. An intelligent hybrid system for surface coal mine safety analysis

    Energy Technology Data Exchange (ETDEWEB)

    Lilic, N.; Obradovic, I.; Cvjetic, A. [University of Belgrade, Belgrade (Serbia)

    2010-06-15

    Analysis of safety in surface coal mines represents a very complex process. Published studies on mine safety analysis are usually based on research related to accidents statistics and hazard identification with risk assessment within the mining industry. Discussion in this paper is focused on the application of AI methods in the analysis of safety in mining environment. Complexity of the subject matter requires a high level of expert knowledge and great experience. The solution was found in the creation of a hybrid system PROTECTOR, whose knowledge base represents a formalization of the expert knowledge in the mine safety field. The main goal of the system is the estimation of mining environment as one of the significant components of general safety state in a mine. This global goal is subdivided into a hierarchical structure of subgoals where each subgoal can be viewed as the estimation of a set of parameters (gas, dust, climate, noise, vibration, illumination, geotechnical hazard) which determine the general mine safety state and category of hazard in mining environment. Both the hybrid nature of the system and the possibilities it offers are illustrated through a case study using field data related to an existing Serbian surface coal mine.

  15. System and software safety analysis for the ERA control computer

    International Nuclear Information System (INIS)

    Beerthuizen, P.G.; Kruidhof, W.

    2001-01-01

    The European Robotic Arm (ERA) is a seven degrees of freedom relocatable anthropomorphic robotic manipulator system, to be used in manned space operation on the International Space Station, supporting the assembly and external servicing of the Russian segment. The safety design concept and implementation of the ERA is described, in particular with respect to the central computer's software design. A top-down analysis and specification process is used to down flow the safety aspects of the ERA system towards the subsystems, which are produced by a consortium of companies in many countries. The user requirements documents and the critical function list are the key documents in this process. Bottom-up analysis (FMECA) and test, on both subsystem and system level, are the basis for safety verification. A number of examples show the use of the approach and methods used

  16. Safety analysis fundamentals

    International Nuclear Information System (INIS)

    Wright, A.C.D.

    2002-01-01

    This paper discusses the safety analysis fundamentals in reactor design. This study includes safety analysis done to show consequences of postulated accidents are acceptable. Safety analysis is also used to set design of special safety systems and includes design assist analysis to support conceptual design. safety analysis is necessary for licensing a reactor, to maintain an operating license, support changes in plant operations

  17. A formal safety analysis for PLC software-based safety critical system using Z

    International Nuclear Information System (INIS)

    Koh, Jung Soo; Seong, Poong Hyun

    1997-01-01

    This paper describes a formal safety analysis technique which is demonstrated by performing empirical formal safety analysis with the case study of beamline hutch door Interlock system that is developed by using PLC (Programmable Logic Controller) systems at the Pohang Accelerator Laboratory. In order to perform formed safety analysis, we have built the Z formal specifications representation from user requirement written in ambiguous natural language and target PLC ladder logic, respectively. We have also studied the effective method to express typical PLC timer component by using specific Z formal notation which is supported by temporal history. We present a formal proof technique specifying and verifying that the hazardous states are not introduced into ladder logic in the PLC-based safety critical system

  18. Analysis and design on airport safety information management system

    Directory of Open Access Journals (Sweden)

    Yan Lin

    2017-01-01

    Full Text Available Airport safety information management system is the foundation of implementing safety operation, risk control, safety performance monitor, and safety management decision for the airport. The paper puts forward the architecture of airport safety information management system based on B/S model, focuses on safety information processing flow, designs the functional modules and proposes the supporting conditions for system operation. The system construction is helpful to perfecting the long effect mechanism driven by safety information, continually increasing airport safety management level and control proficiency.

  19. A formal safety analysis for PLC software-based safety critical system using Z

    International Nuclear Information System (INIS)

    Koh, Jung Soo

    1997-02-01

    This paper describes a formal safety analysis technique which is demonstrated by performing empirical formal safety analysis with the case study of beamline hutch door Interlock system that is developed by using PLC (Programmable Logic Controller) systems at the Pohang Accelerator Laboratory. In order to perform formal safety analysis, we have built the Z formal specifications representation from user requirement written in ambiguous natural language and target PLC ladder logic, respectively. We have also studied the effective method to express typical PLC timer component by using specific Z formal notation which is supported by temporal history. We present a formal proof technique specifying and verifying that the hazardous states are not introduced into ladder logic in the PLC-based safety critical system. And also, we have found that some errors or mismatches in user requirement and final implemented PLC ladder logic while analyzing the process of the consistency and completeness of Z translated formal specifications. In the case of relatively small systems like Beamline hutch door interlock system, a formal safety analysis including explicit proof is highly recommended so that the safety of PLC-based critical system may be enhanced and guaranteed. It also provides a helpful benefits enough to comprehend user requirement expressed by ambiguous natural language

  20. System safety analysis of an autonomous mobile robot

    International Nuclear Information System (INIS)

    Bartos, R.J.

    1994-01-01

    Analysis of the safety of operating and maintaining the Stored Waste Autonomous Mobile Inspector (SWAMI) II in a hazardous environment at the Fernald Environmental Management Project (FEMP) was completed. The SWAMI II is a version of a commercial robot, the HelpMate trademark robot produced by the Transitions Research Corporation, which is being updated to incorporate the systems required for inspecting mixed toxic chemical and radioactive waste drums at the FEMP. It also has modified obstacle detection and collision avoidance subsystems. The robot will autonomously travel down the aisles in storage warehouses to record images of containers and collect other data which are transmitted to an inspector at a remote computer terminal. A previous study showed the SWAMI II has economic feasibility. The SWAMI II will more accurately locate radioactive contamination than human inspectors. This thesis includes a System Safety Hazard Analysis and a quantitative Fault Tree Analysis (FTA). The objectives of the analyses are to prevent potentially serious events and to derive a comprehensive set of safety requirements from which the safety of the SWAMI II and other autonomous mobile robots can be evaluated. The Computer-Aided Fault Tree Analysis (CAFTA copyright) software is utilized for the FTA. The FTA shows that more than 99% of the safety risk occurs during maintenance, and that when the derived safety requirements are implemented the rate of serious events is reduced to below one event per million operating hours. Training and procedures in SWAMI II operation and maintenance provide an added safety margin. This study will promote the safe use of the SWAMI II and other autonomous mobile robots in the emerging technology of mobile robotic inspection

  1. Lithium-thionyl chloride cell system safety hazard analysis

    Science.gov (United States)

    Dampier, F. W.

    1985-03-01

    This system safety analysis for the lithium thionyl chloride cell is a critical review of the technical literature pertaining to cell safety and draws conclusions and makes recommendations based on this data. The thermodynamics and kinetics of the electrochemical reactions occurring during discharge are discussed with particular attention given to unstable SOCl2 reduction intermediates. Potentially hazardous reactions between the various cell components and discharge products or impurities that could occur during electrical or thermal abuse are described and the most hazardous conditions and reactions identified. Design factors influencing the safety of Li/SOCl2 cells, shipping and disposal methods and the toxicity of Li/SOCl2 battery components are additional safety issues that are also addressed.

  2. PWR auxiliary systems, safety and emergency systems, accident analysis, operation

    International Nuclear Information System (INIS)

    Meyer, P.J.

    1976-01-01

    The author presents a description of PWR auxiliary systems like volume control, boric acid control, coolant purification, -degassing, -storage and -treatment system and waste processing systems. Residual heat removal systems, emergency systems and containment designs are discussed. As an accident analysis the author gives a survey over malfunctions and disturbances in the field of reactor operations. (TK) [de

  3. A study of software safety analysis system for safety-critical software

    International Nuclear Information System (INIS)

    Chang, H. S.; Shin, H. K.; Chang, Y. W.; Jung, J. C.; Kim, J. H.; Han, H. H.; Son, H. S.

    2004-01-01

    The core factors and requirements for the safety-critical software traced and the methodology adopted in each stage of software life cycle are presented. In concept phase, Failure Modes and Effects Analysis (FMEA) for the system has been performed. The feasibility evaluation of selected safety parameter was performed and Preliminary Hazards Analysis list was prepared using HAZOP(Hazard and Operability) technique. And the check list for management control has been produced via walk-through technique. Based on the evaluation of the check list, activities to be performed in requirement phase have been determined. In the design phase, hazard analysis has been performed to check the safety capability of the system with regard to safety software algorithm using Fault Tree Analysis (FTA). In the test phase, the test items based on FMEA have been checked for fitness guided by an accident scenario. The pressurizer low pressure trip algorithm has been selected to apply FTA method to software safety analysis as a sample. By applying CASE tool, the requirements traceability of safety critical system has been enhanced during all of software life cycle phases

  4. SACS2: Dynamic and Formal Safety Analysis Method for Complex Safety Critical System

    International Nuclear Information System (INIS)

    Koh, Kwang Yong; Seong, Poong Hyun

    2009-01-01

    Fault tree analysis (FTA) is one of the most widely used safety analysis technique in the development of safety critical systems. However, over the years, several drawbacks of the conventional FTA have become apparent. One major drawback is that conventional FTA uses only static gates and hence can not capture dynamic behaviors of the complex system precisely. Although several attempts such as dynamic fault tree (DFT), PANDORA, formal fault tree (FFT) and so on, have been made to overcome this problem, they can not still do absolute or actual time modeling because they adapt relative time concept and can capture only sequential behaviors of the system. Second drawback of conventional FTA is its lack of rigorous semantics. Because it is informal in nature, safety analysis results heavily depend on an analyst's ability and are error-prone. Finally reasoning process which is to check whether basic events really cause top events is done manually and hence very labor-intensive and timeconsuming for the complex systems. In this paper, we propose a new safety analysis method for complex safety critical system in qualitative manner. We introduce several temporal gates based on timed computational tree logic (TCTL) which can represent quantitative notion of time. Then, we translate the information of the fault trees into UPPAAL query language and the reasoning process is automatically done by UPPAAL which is the model checker for time critical system

  5. Survey of systems safety analysis methods and their application to nuclear waste management systems

    International Nuclear Information System (INIS)

    Pelto, P.J.; Winegardner, W.K.; Gallucci, R.H.V.

    1981-11-01

    This report reviews system safety analysis methods and examines their application to nuclear waste management systems. The safety analysis methods examined include expert opinion, maximum credible accident approach, design basis accidents approach, hazard indices, preliminary hazards analysis, failure modes and effects analysis, fault trees, event trees, cause-consequence diagrams, G0 methodology, Markov modeling, and a general category of consequence analysis models. Previous and ongoing studies on the safety of waste management systems are discussed along with their limitations and potential improvements. The major safety methods and waste management safety related studies are surveyed. This survey provides information on what safety methods are available, what waste management safety areas have been analyzed, and what are potential areas for future study

  6. Survey of systems safety analysis methods and their application to nuclear waste management systems

    Energy Technology Data Exchange (ETDEWEB)

    Pelto, P.J.; Winegardner, W.K.; Gallucci, R.H.V.

    1981-11-01

    This report reviews system safety analysis methods and examines their application to nuclear waste management systems. The safety analysis methods examined include expert opinion, maximum credible accident approach, design basis accidents approach, hazard indices, preliminary hazards analysis, failure modes and effects analysis, fault trees, event trees, cause-consequence diagrams, G0 methodology, Markov modeling, and a general category of consequence analysis models. Previous and ongoing studies on the safety of waste management systems are discussed along with their limitations and potential improvements. The major safety methods and waste management safety related studies are surveyed. This survey provides information on what safety methods are available, what waste management safety areas have been analyzed, and what are potential areas for future study.

  7. Nuclear safety: operational aspects. 3. Hazard Analysis of Passive Systems

    International Nuclear Information System (INIS)

    Burgazzi, Luciano

    2001-01-01

    Interest has been aroused in recent years regarding the reliability assessment of passive systems being developed by suppliers, industries, utilities, and research organizations that aim at plant safety improvement and substantial simplification in its implementation. The approach to passive systems reliability assessment entails first a detailed system and safety analysis, and failure mode and effect analysis (FMEA) methodology has been chosen to perform the safety analysis at the system level. The FMEA technique allows identification of all potential failure modes in a system to evaluate their effects on the system and to classify them according to their severity; this technique identifies the reliability-critical areas in the system where modifications to the design are required to reduce the probability of failure. The present study concerns passive systems designed for decay heat removal relying on natural circulation that foresee, for the most part, a condenser immersed in a cooling pool. This is to identify and rank by importance the potential hazards related to passive-system equipment and operation that may critically affect the safety or availability of the plant. More specifically, the content of the paper analyzes the isolation condenser (IC) system foreseen for advanced boiling water reactors for removal of excess sensible and core decay heat by natural circulation during isolation transients. This FMEA analysis is the initial step to be accomplished as support for the development of a methodology aimed at the reliability assessment of thermal-hydraulic passive safety systems, providing important input to more detailed quantitative studies employing, for instance, event trees and fault trees or other reliability/availability models. Main purposes of the work are to identify important accident initiators, find out the possible consequences on the plant deriving from component failures, individuate possible causes, identify mitigating features and

  8. Safety analysis report for packaging (onsite) sample pig transport system

    International Nuclear Information System (INIS)

    MCCOY, J.C.

    1999-01-01

    This Safety Analysis Report for Packaging (SARP) provides a technical evaluation of the Sample Pig Transport System as compared to the requirements of the U.S. Department of Energy, Richland Operations Office (RL) Order 5480.1, Change 1, Chapter III. The evaluation concludes that the package is acceptable for the onsite transport of Type B, fissile excepted radioactive materials when used in accordance with this document

  9. Safety analysis report for packaging (onsite) sample pig transport system

    Energy Technology Data Exchange (ETDEWEB)

    MCCOY, J.C.

    1999-03-16

    This Safety Analysis Report for Packaging (SARP) provides a technical evaluation of the Sample Pig Transport System as compared to the requirements of the U.S. Department of Energy, Richland Operations Office (RL) Order 5480.1, Change 1, Chapter III. The evaluation concludes that the package is acceptable for the onsite transport of Type B, fissile excepted radioactive materials when used in accordance with this document.

  10. Code conversion for system design and safety analysis of NSSS

    Energy Technology Data Exchange (ETDEWEB)

    Lee, Hae Cho; Kim, Young Tae; Choi, Young Gil; Kim, Hee Kyung [Korea Atomic Energy Research Institute, Taejon (Korea, Republic of)

    1996-01-01

    This report describes overall project works related to conversion, installation and validation of computer codes which are used in NSSS design and safety analysis of nuclear power plants. Domain/os computer codes for system safety analysis are installed and validated on Apollo DN10000, and then Apollo version are converted and installed again on HP9000/700 series with appropriate validation. Also, COOLII and COAST which are cyber version computer codes are converted into versions of Apollo DN10000 and HP9000/700, and installed with validation. This report details whole processes of work involved in the computer code conversion and installation, as well as software verification and validation results which are attached to this report. 12 refs., 8 figs. (author)

  11. Safety balance: Analysis of safety systems; Bilans de surete: analyse par les organismes de surete

    Energy Technology Data Exchange (ETDEWEB)

    Delage, M; Giroux, C

    1990-12-01

    Safety analysis, and particularly analysis of exploitation of NPPs is constantly affected by EDF and by the safety authorities and their methodologies. Periodic safety reports ensure that important issues are not missed on daily basis, that incidents are identified and that relevant actions are undertaken. French safety analysis method consists of three principal steps. First type of safety balance is analyzed at the normal start-up phase for each unit including the final safety report. This enables analysis of behaviour of units ten years after their licensing. Second type is periodic operational safety analysis performed during a few years. Finally, the third step consists of safety analysis of the oldest units with the aim to improve the safety standards. The three steps of safety analysis are described in this presentation in detail with the aim to present the objectives and principles. Examples of most recent exercises are included in order to illustrate the importance of such analyses.

  12. Classification analysis of organization factors related to system safety

    International Nuclear Information System (INIS)

    Liu Huizhen; Zhang Li; Zhang Yuling; Guan Shihua

    2009-01-01

    This paper analyzes the different types of organization factors which influence the system safety. The organization factor can be divided into the interior organization factor and exterior organization factor. The latter includes the factors of political, economical, technical, law, social culture and geographical, and the relationships among different interest groups. The former includes organization culture, communication, decision, training, process, supervision and management and organization structure. This paper focuses on the description of the organization factors. The classification analysis of the organization factors is the early work of quantitative analysis. (authors)

  13. SCALE system cross-section validation for criticality safety analysis

    International Nuclear Information System (INIS)

    Hathout, A.M.; Westfall, R.M.; Dodds, H.L. Jr.

    1980-01-01

    The purpose of this study is to test selected data from three cross-section libraries for use in the criticality safety analysis of UO 2 fuel rod lattices. The libraries, which are distributed with the SCALE system, are used to analyze potential criticality problems which could arise in the industrial fuel cycle for PWR and BWR reactors. Fuel lattice criticality problems could occur in pool storage, dry storage with accidental moderation, shearing and dissolution of irradiated elements, and in fuel transport and storage due to inadequate packing and shipping cask design. The data were tested by using the SCALE system to analyze 25 recently performed critical experiments

  14. Analysis of Aviation Safety Reporting System Incident Data Associated With the Technical Challenges of the Vehicle Systems Safety Technology Project

    Science.gov (United States)

    Withrow, Colleen A.; Reveley, Mary S.

    2014-01-01

    This analysis was conducted to support the Vehicle Systems Safety Technology (VSST) Project of the Aviation Safety Program (AVsP) milestone VSST4.2.1.01, "Identification of VSST-Related Trends." In particular, this is a review of incident data from the NASA Aviation Safety Reporting System (ASRS). The following three VSST-related technical challenges (TCs) were the focus of the incidents searched in the ASRS database: (1) Vechicle health assurance, (2) Effective crew-system interactions and decisions in all conditions; and (3) Aircraft loss of control prevention, mitigation, and recovery.

  15. Safety analysis and review system: a Department of Energy safety assurance tool

    International Nuclear Information System (INIS)

    Rosenthal, H.B.

    1981-01-01

    The concept of the Safety Analysis and Review System is not new. It has been used within the Department and its predecessor agencies, Atomic Energy Commission (AEC) and Energy Research and Development Administration (ERDA), for over 20 years. To minimize the risks from nuclear reactor and power plants, the AEC developed a process to support management authorization of each operation through identification and analysis of potential hazards and the measures taken to control them. As the agency evolved from AEC through ERDA to the Department of Energy, its responsibilities were broadened to cover a diversity of technologies, including those associated with the development of fossil, solar, and geothermal energy. Because the safety analysis process had proved effective in a technology of high potential hazard, the Department investigated the applicability of the process to the other technologies. This paper describes the system and discusses how it is implemented within the Department

  16. Safety analysis report for packaging (onsite) doorstop samplecarrier system

    Energy Technology Data Exchange (ETDEWEB)

    Obrien, J.H.

    1997-02-24

    The Doorstop Sample Carrier System consists of a Type B certified N-55 overpack, U.S. Department of Transportation (DOT) specification or performance-oriented 208-L (55-gal) drum (DOT 208-L drum), and Doorstop containers. The purpose of the Doorstop Sample Carrier System is to transport samples onsite for characterization. This safety analysis report for packaging (SARP) provides the analyses and evaluation necessary to demonstrate that the Doorstop Sample Carrier System meets the requirements and acceptance criteria for both Hanford Site normal transport conditions and accident condition events for a Type B package. This SARP also establishes operational, acceptance, maintenance, and quality assurance (QA) guidelines to ensure that the method of transport for the Doorstop Sample Carrier System is performed safely in accordance with WHC-CM-2-14, Hazardous Material Packaging and Shipping.

  17. System safety education focused on flight safety

    Science.gov (United States)

    Holt, E.

    1971-01-01

    The measures necessary for achieving higher levels of system safety are analyzed with an eye toward maintaining the combat capability of the Air Force. Several education courses were provided for personnel involved in safety management. Data include: (1) Flight Safety Officer Course, (2) Advanced Safety Program Management, (3) Fundamentals of System Safety, and (4) Quantitative Methods of Safety Analysis.

  18. Applicability of trends in nuclear safety analysis to space nuclear power systems

    International Nuclear Information System (INIS)

    Bari, R.A.

    1992-01-01

    A survey is presented of some current trends in nuclear safety analysis that may be relevant to space nuclear power systems. This includes: lessons learned from operating power reactor safety and licensing; approaches to the safety design of advanced and novel reactors and facilities; the roles of risk assessment, extremely unlikely accidents, safety goals/targets; and risk-benefit analysis and communication

  19. CCF analysis of high redundancy systems safety/relief valve data analysis and reference BWR application

    International Nuclear Information System (INIS)

    Mankamo, T.; Bjoere, S.; Olsson, Lena

    1992-12-01

    Dependent failure analysis and modeling were developed for high redundancy systems. The study included a comprehensive data analysis of safety and relief valves at the Finnish and Swedish BWR plants, resulting in improved understanding of Common Cause Failure mechanisms in these components. The reference application on the Forsmark 1/2 reactor relief system, constituting of twelve safety/relief lines and two regulating relief lines, covered different safety criteria cases of reactor depressurization and overpressure protection function, and failure to re close sequences. For the quantification of dependencies, the Alpha Factor Model, the Binomial Probability Model and the Common Load Model were compared for applicability in high redundancy systems

  20. RELOSS, Reliability of Safety System by Fault Tree Analysis

    International Nuclear Information System (INIS)

    Allan, R.N.; Rondiris, I.L.; Adraktas, A.

    1981-01-01

    1 - Description of problem or function: Program RELOSS is used in the reliability/safety assessment of any complex system with predetermined operational logic in qualitative and (if required) quantitative terms. The program calculates the possible system outcomes following an abnormal operating condition and the probability of occurrence, if required. Furthermore, the program deduces the minimal cut or tie sets of the system outcomes and identifies the potential common mode failures. 4. Method of solution: The reliability analysis performed by the program is based on the event tree methodology. Using this methodology, the program develops the event tree of a system or a module of that system and relates each path of this tree to its qualitative and/or quantitative impact on specified system or module outcomes. If the system being analysed is subdivided into modules the program assesses each module in turn as described previously and then combines the module information to obtain results for the overall system. Having developed the event tree of a module or a system, the program identifies which paths lead or do not lead to various outcomes depending on whether the cut or the tie sets of the outcomes are required and deduces the corresponding sets. Furthermore the program identifies for a specific system outcome, the potential common mode failures and the cut or tie sets containing potential dependent failures of some components. 5. Restrictions on the complexity of the problem: The present dimensions of the program are as follows. They can however be easily modified: Maximum number of modules (equivalent components): 25; Maximum number of components in a module: 15; Maximum number of levels of parentheses in a logical statement: 10 Maximum number of system outcomes: 3; Maximum number of module outcomes: 2; Maximum number of points in time for which quantitative analysis is required: 5; Maximum order of any cut or tie set: 10; Maximum order of a cut or tie of any

  1. Status of generic actions items and safety analysis system of PHWR

    Energy Technology Data Exchange (ETDEWEB)

    Park, Joo Hwan; Min, Byung Joo

    2001-05-01

    This report described the review results of a GAIs(Generic Action Item) currently issued on safety analysis of PHWR(Pressurized Heavy Water Reactor) and the research activities and positions to solve the GAIs in each country which possess PHWRs. eviewing the Final Safety Analysis Report for Wolsong-2/3/4 Units, the safety analysis methodology, classification for accident scenarios, safety analysis codes, their interface, etc.. were described. From the present review report, it is intended to establish the CANDU safety analysis system by providing the better understandings and development plans for the safety analysis of PHWR. esults.

  2. Reliability analysis of diverse safety logic systems of fast breeder reactor

    International Nuclear Information System (INIS)

    Ravi Kumar, Bh.; Apte, P.R.; Srivani, L.; Ilango Sambasivan, S.; Swaminathan, P.

    2006-01-01

    Safety Logic for Fast Breeder Reactor (FBR) is designed to initiate safety action against Design Basis Events. Based on the outputs of various processing circuits, Safety logic system drives the control rods of the shutdown system. So, Safety Logic system is classified as safety critical system. Therefore, reliability analysis has to be performed. This paper discusses the Reliability analysis of Diverse Safety logic systems of FBRs. For this literature survey on safety critical systems, system reliability approach and standards to be followed like IEC-61508 are discussed in detail. For Programmable Logic device based systems, Hardware Description Languages (HDL) are used. So this paper also discusses the Verification and Validation for HDLs. Finally a case study for the Reliability analysis of Safety logic is discussed. (author)

  3. RAMI analysis of the ITER Central Safety System

    Energy Technology Data Exchange (ETDEWEB)

    Kitazawa, Sin-iti, E-mail: kitazawa.siniti@jaea.go.jp [ITER Project Unit, Japan Atomic Energy Agency (JAEA), Naka, 311-0193 Ibaraki (Japan); Okayama, Katsumi [ITER Organization, Route de Vinon sur Verdon, 13115 Saint Paul Lez Durance (France); Neyatani, Yuzuru [ITER Project Unit, Japan Atomic Energy Agency (JAEA), Naka, 311-0193 Ibaraki (Japan); Sagot, Francois; Houtte, Didier van [ITER Organization, Route de Vinon sur Verdon, 13115 Saint Paul Lez Durance (France)

    2014-06-15

    Highlights: • We performed the functional analysis of the ITER CSS. • We performed a failure mode analysis of the ITER CSS. • We estimated the reliability and availability of the ITER CSS. • The ITER RAMI approach was applied to the ITER CSS for technical risk control in the design phase. - Abstract: ITER is the first worldwide international project aiming to design a facility to produce nuclear fusion energy. The technical requirements of its plant systems have been established in the ITER Project Baseline. In the project, the Reliability, Availability, Maintainability and Inspectability (RAMI) approach has been adopted for technical risk control to help aid the design of the components in preparation for operation and maintenance. A RAMI analysis was performed on the conceptual design of the ITER Central Safety System (CSS). A functional breakdown was prepared in a bottom-up approach, resulting in the system being divided into 2 main functions and 20 sub-functions. These functions were described using the IDEF0 method. Reliability block diagrams were prepared to estimate the reliability and availability of each function under the stipulated operating conditions. Initial and expected scenarios were analyzed to define risk-mitigation actions. The inherent availability of the ITER CSS expected after implementation of mitigation actions was calculated to be 99.80% over 2 years, which is the typical interval of the scheduled maintenance cycles. This is consistent with the project required value of 99.9 ± 0.1%. A Failure Modes, Effects and Criticality Analysis was performed with criticality charts highlighting the risk level of the different failure modes with regard to their probability of occurrence and their effects on the availability of the plasma operation. This analysis defined when risk mitigation actions were required in terms of design, testing, operation procedures and/or maintenance to reduce the risk levels and increase the availability of the

  4. Vibration analysis of the Golfech 2 safety injection system

    International Nuclear Information System (INIS)

    Morilhat, P.

    1993-01-01

    The main function of the safety injection system in a PWR plant is to ensure cooling of fuel elements in the event of a loss of coolant accident. The multistage centrifugal pump mounted-on this system induces pressure fluctuations, resulting in dynamic loads on piping. In certain plant units, these loads have caused cracking in the nozzles connected to the safety injection system, whereas in others, no damage has been observed. In order to understand the differences in dynamic behavior observed from one site to another, tests were performed on a real safety injection system, that of Golfech-2. They enabled determination of the modal characteristics of the system and identification of the hydro-acoustic source of the low head safety injection pump. They also enabled assessment of the pressure fluctuation levels in the pump suction and discharge areas as well as the vibratory response of the system when operating under partial and nominal flow conditions. Finally, these test results were used to estimate fatigue damage in the safety injection system. The experimental results will later be used to validate the model of the system undertaken with the piping design code CIRCUS and define the boundary conditions to be taken into account. (author). 6 figs., 2 refs

  5. Safety analysis for the use of new digital safety I and C systems

    International Nuclear Information System (INIS)

    Buehler, Cornelia

    2012-01-01

    Age-induced replacement or modernization of safety I and C systems by digital equipment technology has been one of the topical subjects in nuclear technology for more than a decade. Digital equipment technology in this case means microcontroller- or microprocessor-based systems which implement I and C functions in software (SW) and, on the other hand, systems with programmed hardware (HW) components, such as Application-specific Integrated Circuits (ASIC), Field Programmable Gate Arrays (FPGA) or Programmable Logic Devices (PLS), which can be developed only by means of sophisticated SW development environments. The switch to digital equipment technology is more than a mere change in equipment technology even though the I and C functions remain almost identical in most cases. The switch not only leads to a different approach in equipment qualification, but also requires new focal points in plant design when it comes to assessing plant design, and needs new or adapted methods of analysis and evaluation. The main reason lies in the greater possibilities of systematic errors caused mainly by software-based development, manufacture and maintenance. New and adapted methods of analysis and evaluation for I and C systems are presented and explained. It is safe to say that safety I and C technology in the highest category of requirements necessitates a very far reaching realignment in design and evaluation as well as the use of new analytical techniques. This meets the claim of an I and C technology fit for use, reliable and comparable to the technology it replaces. (orig.)

  6. Nuclear power safety reporting system feasibility analysis and concept description

    International Nuclear Information System (INIS)

    Finlayson, F.C.; Ims, J.R.; Hussman, T.A.

    1984-01-01

    The Aerospace Corporation is assisting the US Nuclear Regulatory Commission (NRC) in the evaluation of the potential attributes of a voluntary, nonpunitive data gathering system for identifying and quantifying the factors that contribute to the occurrence of significant safety problems involving humans in nuclear power plants. The objectives of the Aerospace Administration (FAA)/National Aeronautics and Space Administration (NASA) Aviation Safety Reporting System (ASRS) in order to determine whether it would be feasible to apply part (or all) of the ASRS concepts for collecting data on human factor related incidents to the nuclear industry; and (2) to identify and define the basic elements and requirements of a Nuclear Power Safety Reporting System (NPSRS), assuming the feasibility of implementing such a system was established

  7. Final safety analysis report for the atmospheric protection system

    International Nuclear Information System (INIS)

    1976-06-01

    An Atmospheric Protection System (APS) has been constructed at the Idaho Chemical Processing Plant to minimize the release of radioactive particulate material to the atmosphere from nonroutine occurrences. Existing off-gas cleanup systems remove radioactive particulates to well below allowable limits for controlled areas before release to the plant stack. Previously all ventilation air from process cells was discharged to the stack without treatment. The APS provides continuous filtration of all ventilation air from process cells and backup filtration of all process off gases before they are released to the atmosphere. A safety analysis of the potential hazards associated with the APS has been completed. The review indicates that the system is capable of withstanding design basis natural phenomena including a flood, tornado, and earthquake without releasing unacceptable amounts of radioactive particulate from the filters to the environment. An in-cell explosion, fire, mechanical damage, and other postulated accident situations were investigated. From these, the design basis accident postulated for the facility is complete release of the maximum amount of radioactive particulate collected on the 104 ventilation air HEPA filters to the atmosphere via the 250-foot high stack. Even though the release of all the radioactive particulate contained on the filters is hardly credible, it would not present an unacceptable hazard to personnel on or offsite

  8. Implementation of a patient safety program at a tertiary health system: A longitudinal analysis of interventions and serious safety events.

    Science.gov (United States)

    Cropper, Douglas P; Harb, Nidal H; Said, Patricia A; Lemke, Jon H; Shammas, Nicolas W

    2018-04-01

    We hypothesize that implementation of a safety program based on high reliability organization principles will reduce serious safety events (SSE). The safety program focused on 7 essential elements: (a) safety rounding, (b) safety oversight teams, (c) safety huddles, (d) safety coaches, (e) good catches/safety heroes, (f) safety education, and (g) red rule. An educational curriculum was implemented focusing on changing high-risk behaviors and implementing critical safety policies. All unusual occurrences were captured in the Midas system and investigated by risk specialists, the safety officer, and the chief medical officer. A multidepartmental committee evaluated these events, and a root cause analysis (RCA) was performed. Events were tabulated and serious safety event (SSE) recorded and plotted over time. Safety success stories (SSSs) were also evaluated over time. A steady drop in SSEs was seen over 9 years. Also a rise in SSSs was evident, reflecting on staff engagement in the program. The parallel change in SSEs, SSSs, and the implementation of various safety interventions highly suggest that the program was successful in achieving its goals. A safety program based on high-reliability organization principles and made a core value of the institution can have a significant positive impact on reducing SSEs. © 2018 American Society for Healthcare Risk Management of the American Hospital Association.

  9. Analysis approach for common cause failure on non-safety digital control system

    Energy Technology Data Exchange (ETDEWEB)

    Kim, Yun Goo; Oh, Eungse [Korea Hydro and Nuclear Power Co. Ltd., Daejeon (Korea, Republic of)

    2014-05-15

    The effects of common cause failure (CCF) on safety digital instrumentation and control (I and C) system had been considered in defense in depth and diversity coping analysis with safety analysis method. For the non-safety system, single failure had been considered for safety analysis. IEEE Std. 603-1991, Clause 5.6.3.1(2), 'Isolation' states that no credible failure on the non-safety side of an isolation device shall prevent any portion of a safety system from meeting its minimum performance requirements during and following any design basis event requiring that safety function. The software CCF is one of the credible failure on the non-safety side. In advanced digital I and C system, same hardware component is used for different control system and the defect in manufacture or common external event can generate CCF. Moreover, the non-safety I and C system uses complex software for its various function and software quality assurance for the development process is less severe than safety software for the cost effective design. Therefore the potential defects in software cannot be ignored and the effect of software CCF on non-safety I and C system is needed to be evaluated. This paper proposes the general process and considerations for the analysis of CCF on non-safety I and C system.

  10. Linking Safety Analysis to Safety Requirements

    DEFF Research Database (Denmark)

    Hansen, Kirsten Mark

    Software for safety critical systems must deal with the hazards identified by safety analysistechniques: Fault trees, event trees,and cause consequence diagrams can be interpreted as safety requirements and used in the design activity. We propose that the safety analysis and the system design use...

  11. Prospective Safety Analysis and the Complex Aviation System

    Science.gov (United States)

    Smith, Brian E.

    2013-01-01

    Fatal accident rates in commercial passenger aviation are at historic lows yet have plateaued and are not showing evidence of further safety advances. Modern aircraft accidents reflect both historic causal factors and new unexpected "Black Swan" events. The ever-increasing complexity of the aviation system, along with its associated technology and organizational relationships, provides fertile ground for fresh problems. It is important to take a proactive approach to aviation safety by working to identify novel causation mechanisms for future aviation accidents before they happen. Progress has been made in using of historic data to identify the telltale signals preceding aviation accidents and incidents, using the large repositories of discrete and continuous data on aircraft and air traffic control performance and information reported by front-line personnel. Nevertheless, the aviation community is increasingly embracing predictive approaches to aviation safety. The "prospective workshop" early assessment tool described in this paper represents an approach toward this prospective mindset-one that attempts to identify the future vectors of aviation and asks the question: "What haven't we considered in our current safety assessments?" New causation mechanisms threatening aviation safety will arise in the future because new (or revised) systems and procedures will have to be used under future contextual conditions that have not been properly anticipated. Many simulation models exist for demonstrating the safety cases of new operational concepts and technologies. However the results from such models can only be as valid as the accuracy and completeness of assumptions made about the future context in which the new operational concepts and/or technologies will be immersed. Of course that future has not happened yet. What is needed is a reasonably high-confidence description of the future operational context, capturing critical contextual characteristics that modulate

  12. Analysis of developed transition road safety barrier systems.

    Science.gov (United States)

    Soltani, Mehrtash; Moghaddam, Taher Baghaee; Karim, Mohamed Rehan; Sulong, N H Ramli

    2013-10-01

    Road safety barriers protect vehicles from roadside hazards by redirecting errant vehicles in a safe manner as well as providing high levels of safety during and after impact. This paper focused on transition safety barrier systems which were located at the point of attachment between a bridge and roadside barriers. The aim of this study was to provide an overview of the behavior of transition systems located at upstream bridge rail with different designs and performance levels. Design factors such as occupant risk and vehicle trajectory for different systems were collected and compared. To achieve this aim a comprehensive database was developed using previous studies. The comparison showed that Test 3-21, which is conducted by impacting a pickup truck with speed of 100 km/h and angle of 25° to transition system, was the most severe test. Occupant impact velocity and ridedown acceleration for heavy vehicles were lower than the amounts for passenger cars and pickup trucks, and in most cases higher occupant lateral impact ridedown acceleration was observed on vehicles subjected to higher levels of damage. The best transition system was selected to give optimum performance which reduced occupant risk factors using the similar crashes in accordance with Test 3-21. Copyright © 2013 Elsevier Ltd. All rights reserved.

  13. Nuclear-power-safety reporting system: feasibility analysis

    International Nuclear Information System (INIS)

    Finlayson, F.C.; Ims, J.

    1983-04-01

    The US Nuclear Regulatory Commission (NRC) is evaluating the possibility of instituting a data gathering system for identifying and quantifying the factors that contribute to the occurrence of significant safety problems involving humans in nuclear power plants. This report presents the results of a brief (6 months) study of the feasibility of developing a voluntary, nonpunitive Nuclear Power Safety Reporting System (NPSRS). Reports collected by the system would be used to create a data base for documenting, analyzing and assessing the significance of the incidents. Results of The Aerospace Corporation study are presented in two volumes. This document, Volume I, contains a summary of an assessment of the Aviation Safety Reporting System (ASRS). The FAA-sponsored, NASA-managed ASRS was found to be successful, relatively low in cost, generally acceptable to all facets of the aviation community, and the source of much useful data and valuable reports on human factor problems in the nation's airways. Several significant ASRS features were found to be pertinent and applicable for adoption into a NPSRS

  14. Improvement of safety by analysis of costs and benefits of the system

    OpenAIRE

    T. Karkoszka; M. Andraczke

    2011-01-01

    Purpose: of the paper has been the assessment of the dependence between improvement of the implemented occupational health and safety management system and both minimization of costs connected with occupational health and safety assurance and optimization of real work conditions.Design/methodology/approach: used for the analysis has included definition of the occupational health and safety system with regard to the rules and tool allowing for occupational safety assurance in the organisationa...

  15. Management implementation plan for a safety analysis and review system

    International Nuclear Information System (INIS)

    Hulburt, D.A.; Berkey, B.D.

    1981-04-01

    The US Department of Energy has issued an Order, DOE 5481.1, which establishes uniform requirements for the preparation and review of Safety Analysis for DOE Operations. The Management Implementation Plan specified herein establishes the administrative procedures and technical requirements for implementing DOE 5481.1 to Operations under the cognizance of the Pittsburgh Energy Technology Center. This Implementation Plan is applicable to all present and future Operations under the cognizance of PETC. The Plan identifies those Operations for which DOE 5481.1 is applicable and those Operations for which no further analysis is required because the initial determination and review has concluded that DOE 5481.1 does not apply

  16. Finite mixture models for sensitivity analysis of thermal hydraulic codes for passive safety systems analysis

    Energy Technology Data Exchange (ETDEWEB)

    Di Maio, Francesco, E-mail: francesco.dimaio@polimi.it [Energy Department, Politecnico di Milano, Via La Masa 34, 20156 Milano (Italy); Nicola, Giancarlo [Energy Department, Politecnico di Milano, Via La Masa 34, 20156 Milano (Italy); Zio, Enrico [Energy Department, Politecnico di Milano, Via La Masa 34, 20156 Milano (Italy); Chair on System Science and Energetic Challenge Fondation EDF, Ecole Centrale Paris and Supelec, Paris (France); Yu, Yu [School of Nuclear Science and Engineering, North China Electric Power University, 102206 Beijing (China)

    2015-08-15

    Highlights: • Uncertainties of TH codes affect the system failure probability quantification. • We present Finite Mixture Models (FMMs) for sensitivity analysis of TH codes. • FMMs approximate the pdf of the output of a TH code with a limited number of simulations. • The approach is tested on a Passive Containment Cooling System of an AP1000 reactor. • The novel approach overcomes the results of a standard variance decomposition method. - Abstract: For safety analysis of Nuclear Power Plants (NPPs), Best Estimate (BE) Thermal Hydraulic (TH) codes are used to predict system response in normal and accidental conditions. The assessment of the uncertainties of TH codes is a critical issue for system failure probability quantification. In this paper, we consider passive safety systems of advanced NPPs and present a novel approach of Sensitivity Analysis (SA). The approach is based on Finite Mixture Models (FMMs) to approximate the probability density function (i.e., the uncertainty) of the output of the passive safety system TH code with a limited number of simulations. We propose a novel Sensitivity Analysis (SA) method for keeping the computational cost low: an Expectation Maximization (EM) algorithm is used to calculate the saliency of the TH code input variables for identifying those that most affect the system functional failure. The novel approach is compared with a standard variance decomposition method on a case study considering a Passive Containment Cooling System (PCCS) of an Advanced Pressurized reactor AP1000.

  17. Software safety analysis techniques for developing safety critical software in the digital protection system of the LMR

    Energy Technology Data Exchange (ETDEWEB)

    Lee, Jang Soo; Cheon, Se Woo; Kim, Chang Hoi; Sim, Yun Sub

    2001-02-01

    This report has described the software safety analysis techniques and the engineering guidelines for developing safety critical software to identify the state of the art in this field and to give the software safety engineer a trail map between the code and standards layer and the design methodology and documents layer. We have surveyed the management aspects of software safety activities during the software lifecycle in order to improve the safety. After identifying the conventional safety analysis techniques for systems, we have surveyed in details the software safety analysis techniques, software FMEA(Failure Mode and Effects Analysis), software HAZOP(Hazard and Operability Analysis), and software FTA(Fault Tree Analysis). We have also surveyed the state of the art in the software reliability assessment techniques. The most important results from the reliability techniques are not the specific probability numbers generated, but the insights into the risk importance of software features. To defend against potential common-mode failures, high quality, defense-in-depth, and diversity are considered to be key elements in digital I and C system design. To minimize the possibility of CMFs and thus increase the plant reliability, we have provided D-in-D and D analysis guidelines.

  18. Software safety analysis techniques for developing safety critical software in the digital protection system of the LMR

    International Nuclear Information System (INIS)

    Lee, Jang Soo; Cheon, Se Woo; Kim, Chang Hoi; Sim, Yun Sub

    2001-02-01

    This report has described the software safety analysis techniques and the engineering guidelines for developing safety critical software to identify the state of the art in this field and to give the software safety engineer a trail map between the code and standards layer and the design methodology and documents layer. We have surveyed the management aspects of software safety activities during the software lifecycle in order to improve the safety. After identifying the conventional safety analysis techniques for systems, we have surveyed in details the software safety analysis techniques, software FMEA(Failure Mode and Effects Analysis), software HAZOP(Hazard and Operability Analysis), and software FTA(Fault Tree Analysis). We have also surveyed the state of the art in the software reliability assessment techniques. The most important results from the reliability techniques are not the specific probability numbers generated, but the insights into the risk importance of software features. To defend against potential common-mode failures, high quality, defense-in-depth, and diversity are considered to be key elements in digital I and C system design. To minimize the possibility of CMFs and thus increase the plant reliability, we have provided D-in-D and D analysis guidelines

  19. Ship Power System Analysis Based on Safety Aspects

    Directory of Open Access Journals (Sweden)

    Urbaha Margarita

    2017-08-01

    Full Text Available This article analyses the reasons for the reduction of insulating resistance, processes influencing them and isolation diagnostic methods. It provides a short description of electrical safety situation on ships with isolated neutral electrical power systems. It also covers the methods of protecting personnel from electric shock or preventing ignition or arching damage at the fault location with the help of fault current compensation. Principal fault current compensation circuit diagrams are analysed by using the minimum value and time of transient fault current as criteria.

  20. Unavailability modeling and analysis of redundant safety systems

    International Nuclear Information System (INIS)

    Vaurio, J.K.; Sciaudone, D.

    1979-10-01

    Analytical expressions have been developed to estimate the average unavailability of an m-out-of-n (m/n, 1 less than or equal to m less than or equal to n less than or equal to 4) standby safety system of a nuclear power plant. The expressions take into account contributions made by testing, repair, equipment failure, human error, and different testing schemes. A computer code, ICARUS, has been written to incorporate these analytical equations. The code is capable of calculating the average unavailability, optimum test interval, and relative contributions of testing, repair, and random failures for any of three testing schemes. After verification of the methodology and coding in ICARUS, a typical auxiliary feedwater system of a nuclear power plant was analyzed. The results show that the failure modes associated with testing and true demands contribute considerably to the unavailability and that diesel generators are the most critical components contributing to the overall unavailability of the system

  1. Unavailability modeling and analysis of redundant safety systems

    Energy Technology Data Exchange (ETDEWEB)

    Vaurio, J.K.; Sciaudone, D.

    1979-10-01

    Analytical expressions have been developed to estimate the average unavailability of an m-out-of-n (m/n, 1 less than or equal to m less than or equal to n less than or equal to 4) standby safety system of a nuclear power plant. The expressions take into account contributions made by testing, repair, equipment failure, human error, and different testing schemes. A computer code, ICARUS, has been written to incorporate these analytical equations. The code is capable of calculating the average unavailability, optimum test interval, and relative contributions of testing, repair, and random failures for any of three testing schemes. After verification of the methodology and coding in ICARUS, a typical auxiliary feedwater system of a nuclear power plant was analyzed. The results show that the failure modes associated with testing and true demands contribute considerably to the unavailability and that diesel generators are the most critical components contributing to the overall unavailability of the system.

  2. Decay Power Calculation for Safety Analysis of Innovative Reactor Systems

    Energy Technology Data Exchange (ETDEWEB)

    Shwageraus, E.; Fridman, E. [Department of Nuclear Engineering, Ben-Gurion University of the Negev Beer-Sheva 84105 (Israel)

    2008-07-01

    In this work, we verified the decay heat calculation capabilities of BGCore computer code system developed recently at Ben-Gurion University. Decay power was calculated for a typical UO{sub 2} fuel in Pressurized Water Reactor environment using BGCore code and using procedure prescribed by the ANS/ANSI-2005 standard. Very good agreement between the two methods was obtained. Once BGCore calculation capabilities were verified, we calculated decay power as a function of time after shutdown for various reactors with innovative fuels, for which no standard procedure is currently available. Notable differences were observed for decay power of the advanced reactors as compared with conventional UO{sub 2} LWR. The observed differences suggest that the design of new reactors safety systems must be based on corresponding decay power curves for each individual case in order to assure the desired performance of such systems. (authors)

  3. Decay Power Calculation for Safety Analysis of Innovative Reactor Systems

    International Nuclear Information System (INIS)

    Shwageraus, E.; Fridman, E.

    2008-01-01

    In this work, we verified the decay heat calculation capabilities of BGCore computer code system developed recently at Ben-Gurion University. Decay power was calculated for a typical UO 2 fuel in Pressurized Water Reactor environment using BGCore code and using procedure prescribed by the ANS/ANSI-2005 standard. Very good agreement between the two methods was obtained. Once BGCore calculation capabilities were verified, we calculated decay power as a function of time after shutdown for various reactors with innovative fuels, for which no standard procedure is currently available. Notable differences were observed for decay power of the advanced reactors as compared with conventional UO 2 LWR. The observed differences suggest that the design of new reactors safety systems must be based on corresponding decay power curves for each individual case in order to assure the desired performance of such systems. (authors)

  4. Systems Safety and Engineering Division

    Data.gov (United States)

    Federal Laboratory Consortium — Volpe's Systems Safety and Engineering Division conducts engineering, research, and analysis to improve transportation safety, capacity, and resiliency. We provide...

  5. Reliability analysis of digital safety systems at nuclear power plants

    International Nuclear Information System (INIS)

    Sopira Vladimir; Kovacs, Zoltan

    2015-01-01

    Reliability analysis of digital reactor protection systems built on the basis of TELEPERM XS is described, and experience gained by the Slovak RELKO company during the past 20 years in this domain is highlighted. (orig.)

  6. Reactor Safety Analysis

    International Nuclear Information System (INIS)

    Arien, B.

    2000-01-01

    The objective of SCK-CEN's programme on reactor safety is to develop expertise in probabilistic and deterministic reactor safety analysis. The research programme consists of two main activities, in particular the development of software for reliability analysis of large systems and participation in the international PHEBUS-FP programme for severe accidents. Main achievements in 1999 are reported

  7. Qualitative and quantitative reliability analysis of safety systems

    International Nuclear Information System (INIS)

    Karimi, R.; Rasmussen, N.; Wolf, L.

    1980-05-01

    A code has been developed for the comprehensive analysis of a fault tree. The code designated UNRAC (UNReliability Analysis Code) calculates the following characteristics of an input fault tree: (1) minimal cut sets; (2) top event unavailability as point estimate and/or in time dependent form; (3) quantitative importance of each component involved; and, (4) error bound on the top event unavailability. UNRAC can analyze fault trees, with any kind of gates (EOR, NAND, NOR, AND, OR), up to a maximum of 250 components and/or gates. The code is benchmarked against WAMCUT, MODCUT, KITT, BIT-FRANTIC, and PL-MODT. The results showed that UNRAC produces results more consistent with the KITT results than either BIT-FRANTIC or PL-MODT. Overall it is demonstrated that UNRAC is an efficient easy-to-use code and has the advantage of being able to do a complete fault tree analysis with this single code. Applications of fault tree analysis to safety studies of nuclear reactors are considered

  8. Fault tree synthesis for software design analysis of PLC based safety-critical systems

    International Nuclear Information System (INIS)

    Koo, S. R.; Cho, C. H.; Seong, P. H.

    2006-01-01

    As a software verification and validation should be performed for the development of PLC based safety-critical systems, a software safety analysis is also considered in line with entire software life cycle. In this paper, we propose a technique of software safety analysis in the design phase. Among various software hazard analysis techniques, fault tree analysis is most widely used for the safety analysis of nuclear power plant systems. Fault tree analysis also has the most intuitive notation and makes both qualitative and quantitative analyses possible. To analyze the design phase more effectively, we propose a technique of fault tree synthesis, along with a universal fault tree template for the architecture modules of nuclear software. Consequently, we can analyze the safety of software on the basis of fault tree synthesis. (authors)

  9. A survey on reliability and safety analysis techniques of robot systems in nuclear power plants

    Energy Technology Data Exchange (ETDEWEB)

    Eom, H S; Kim, J H; Lee, J C; Choi, Y R; Moon, S S

    2000-12-01

    The reliability and safety analysis techniques was surveyed for the purpose of overall quality improvement of reactor inspection system which is under development in our current project. The contents of this report are : 1. Reliability and safety analysis techniques suvey - Reviewed reliability and safety analysis techniques are generally accepted techniques in many industries including nuclear industry. And we selected a few techniques which are suitable for our robot system. They are falut tree analysis, failure mode and effect analysis, reliability block diagram, markov model, combinational method, and simulation method. 2. Survey on the characteristics of robot systems which are distinguished from other systems and which are important to the analysis. 3. Survey on the nuclear environmental factors which affect the reliability and safety analysis of robot system 4. Collection of the case studies of robot reliability and safety analysis which are performed in foreign countries. The analysis results of this survey will be applied to the improvement of reliability and safety of our robot system and also will be used for the formal qualification and certification of our reactor inspection system.

  10. A survey on reliability and safety analysis techniques of robot systems in nuclear power plants

    International Nuclear Information System (INIS)

    Eom, H.S.; Kim, J.H.; Lee, J.C.; Choi, Y.R.; Moon, S.S.

    2000-12-01

    The reliability and safety analysis techniques was surveyed for the purpose of overall quality improvement of reactor inspection system which is under development in our current project. The contents of this report are : 1. Reliability and safety analysis techniques suvey - Reviewed reliability and safety analysis techniques are generally accepted techniques in many industries including nuclear industry. And we selected a few techniques which are suitable for our robot system. They are falut tree analysis, failure mode and effect analysis, reliability block diagram, markov model, combinational method, and simulation method. 2. Survey on the characteristics of robot systems which are distinguished from other systems and which are important to the analysis. 3. Survey on the nuclear environmental factors which affect the reliability and safety analysis of robot system 4. Collection of the case studies of robot reliability and safety analysis which are performed in foreign countries. The analysis results of this survey will be applied to the improvement of reliability and safety of our robot system and also will be used for the formal qualification and certification of our reactor inspection system

  11. Reliability Analysis Multiple Redundancy Controller for Nuclear Safety Systems

    International Nuclear Information System (INIS)

    Son, Gwangseop; Kim, Donghoon; Son, Choulwoong

    2013-01-01

    This controller is configured for multiple modular redundancy (MMR) composed of dual modular redundancy (DMR) and triple modular redundancy (TMR). The architecture of MRC is briefly described, and the Markov model is developed. Based on the model, the reliability and Mean Time To Failure (MTTF) are analyzed. In this paper, the architecture of MRC for nuclear safety systems is described. The MRC is configured for multiple modular redundancy (MMR) composed of dual modular redundancy (DMR) and triple modular redundancy (TMR). Markov models for MRC architecture was developed, and then the reliability was analyzed by using the model. From the reliability analyses for the MRC, it is obtained that the failure rate of each module in the MRC should be less than 2 Χ 10 -4 /hour and the MTTF average increase rate depending on FCF increment, i. e. ΔMTTF/ΔFCF, is 4 months/0.1

  12. Reliability analysis of repairable safety systems of a reprocessing plant allowing for tolerable system downtimes

    International Nuclear Information System (INIS)

    Schaefer, H.

    1987-01-01

    GRS has been engaged in safety analysises of the German Reprocessing Plant for several years. The development and verification of appropriate reliability analysis methods, the generation of data as well as the search for an adequate structural presentation of the results to form a basis of recommendations for technical or administrative measures or contributions to risk oriented evaluations have been or are in the process of being established. In contrast to NPP-studies, the reliability assessment of safety systems of a reprocessing plant is applied to repairable and often relatively small systems allowing for tolerable system downtimes. A sketch of the diverse cooling systems of a vessel containing a selfheating solution is given. The interruption of the cooling function for about one day might be tolerable before boiling will be reached. This interval is suitable for transfer of the solution to a spare vessel or for repairing the failed components, thus restoring the cooling function

  13. Dependability analysis of proposed I and C architecture for safety systems of a large PWR

    International Nuclear Information System (INIS)

    Kabra, Ashutosh; Karmakar, G.; Tiwari, A.P.; Manoj Kumar; Marathe, P.P.

    2014-01-01

    Instrumentation and Control (I and C) systems in a reactor provide protection against unsafe operation during steady-state and transient power operations. Indian reactors traditionally adopted 2-out-of-3 (2oo3) architecture for safety systems. But, contemporary reactor safety systems are employing 2-out-of-4 (2oo4) architecture in spite of the increased cost due to the additional channel. This motivated us to carry out a comparative study of 2oo3 and 2oo4 architecture, especially for their dependability attributes - safety and availability. Quantitative estimation of safety and availability has been used to adjudge the worthiness of adopting 2oo4 architecture in I and C safety systems of a large PWR. Our analysis using Markov model shows that 2oo4 architecture, even with lower diagnostic coverage and longer proof test interval, can provide better safety and availability in comparison of 2oo3 architecture. This reduces total life cycle cost of system during development phase and complexity and frequency of surveillance test during operational phase. The paper also describes the proposed architecture for Reactor Protection System (RPS), a representative safety system, and determines its dependability using Markov analysis and Failure Mode Effect Analysis (FMEA). The proposed I and C safety system architecture also has been qualitatively analyzed for their effectiveness against common cause failures (CCFs). (author)

  14. Fault Tree Analysis with Temporal Gates and Model Checking Technique for Qualitative System Safety Analysis

    International Nuclear Information System (INIS)

    Koh, Kwang Yong; Seong, Poong Hyun

    2010-01-01

    Fault tree analysis (FTA) has suffered from several drawbacks such that it uses only static gates and hence can not capture dynamic behaviors of the complex system precisely, and it is in lack of rigorous semantics, and reasoning process which is to check whether basic events really cause top events is done manually and hence very labor-intensive and time-consuming for the complex systems while it has been one of the most widely used safety analysis technique in nuclear industry. Although several attempts have been made to overcome this problem, they can not still do absolute or actual time modeling because they adapt relative time concept and can capture only sequential behaviors of the system. In this work, to resolve the problems, FTA and model checking are integrated to provide formal, automated and qualitative assistance to informal and/or quantitative safety analysis. Our approach proposes to build a formal model of the system together with fault trees. We introduce several temporal gates based on timed computational tree logic (TCTL) to capture absolute time behaviors of the system and to give concrete semantics to fault tree gates to reduce errors during the analysis, and use model checking technique to automate the reasoning process of FTA

  15. Analysis Method of Common Cause Failure on Non-safety Digital Control System

    Energy Technology Data Exchange (ETDEWEB)

    Kim, Yun Goo; Oh, Eun Gse [KHNP, Daejeon (Korea, Republic of)

    2014-08-15

    The effects of common cause failure on safety digital instrumentation and control system had been considered in defense in depth analysis with safety analysis method. However, the effects of common cause failure on non-safety digital instrumentation and control system also should be evaluated. The common cause failure can be included in credible failure on the non-safety system. In the I and C architecture of nuclear power plant, many design feature has been applied for the functional integrity of control system. One of that is segmentation. Segmentation defenses the propagation of faults in the I and C architecture. Some of effects from common cause failure also can be limited by segmentation. Therefore, in this paper there are two type of failure mode, one is failures in one control group which is segmented, and the other is failures in multiple control group because that the segmentation cannot defense all effects from common cause failure. For each type, the worst failure scenario is needed to be determined, so the analysis method has been proposed in this paper. The evaluation can be qualitative when there is sufficient justification that the effects are bounded in previous safety analysis. When it is not bounded in previous safety analysis, additional analysis should be done with conservative assumptions method of previous safety analysis or best estimation method with realistic assumptions.

  16. Reactor Safety Analysis

    International Nuclear Information System (INIS)

    Arien, B.

    1998-01-01

    The objective of SCK-CEN's programme on reactor safety is to develop expertise in probabilistic and deterministic reactor safety analysis. The research programme consists of four main activities, in particular the development of software for reliability analysis of large systems and participation in the international PHEBUS-FP programme for severe accidents, the development of an expert system for the aid to diagnosis; the development and application of a probabilistic reactor dynamics method. Main achievements in 1999 are reported

  17. Integrated vehicle-based safety systems (IVBSS) : light vehicle platform field operational test data analysis plan.

    Science.gov (United States)

    2009-12-22

    This document presents the University of Michigan Transportation Research Institutes plan to : perform analysis of data collected from the light vehicle platform field operational test of the : Integrated Vehicle-Based Safety Systems (IVBSS) progr...

  18. Integrated vehicle-based safety systems (IVBSS) : heavy truck platform field operational test data analysis plan.

    Science.gov (United States)

    2009-11-23

    This document presents the University of Michigan Transportation Research Institutes plan to perform : analysis of data collected from the heavy truck platform field operational test of the Integrated Vehicle- : Based Safety Systems (IVBSS) progra...

  19. Establishment of joint application system of safety analysis codes between Korea and Vietnam

    International Nuclear Information System (INIS)

    Chung, Bub Dong; Kim, Kyung Doo; Park, Cheol; Bae, Sung Won; Baek, Won Pil; Song, Cheol hwa; Jeong, Jae Jun; Lee, Seung Wook; Hwang, Moon Kyu; Lee, Chang Sup

    2011-04-01

    The following KAERI-VAEI collaboration works have been performed during the 2 year project ('09.4∼'11.4). 1) On the job training of Vietnam code users(1st training for 4 VAEI staff-3 months. 2nd training for 3 VAEI staff- 3 month), 2) Lecture of nuclear safety analysis (30 hrs basic course and 30 hrs advanced course), 3) Review of safety analysis method (IAEA safety concept and requirements), 4) Collaborative assessment of safety analysis code MARS (13 conceptual problem, 2 separate effect test problem, 1 integral effect test problem), 5) Input deck preparation of standard PWR (Preparation of APR1400 input deck and safety analysis of DBA). VAEI staffs have been familiarized to Korean PWR safety assessment technology through the collaboration assessment work using a computer code developed in Korea. The lectures for Vietnamese research will be contributed to the utilization and cultivation of Korean safety technology. The collaborated assessment works will be used for the establishment of MARS based safety analysis system which is independent from US safety assessment system

  20. Establishment of joint application system of safety analysis codes between Korea and Vietnam

    Energy Technology Data Exchange (ETDEWEB)

    Chung, Bub Dong; Kim, Kyung Doo; Park, Cheol; Bae, Sung Won; Baek, Won Pil; Song, Cheol hwa; Jeong, Jae Jun; Lee, Seung Wook; Hwang, Moon Kyu; Lee, Chang Sup [KAERI, Daejeon (Korea, Republic of)

    2011-04-15

    The following KAERI-VAEI collaboration works have been performed during the 2 year project ('09.4{approx}'11.4). 1) On the job training of Vietnam code users(1st training for 4 VAEI staff-3 months. 2nd training for 3 VAEI staff- 3 month), 2) Lecture of nuclear safety analysis (30 hrs basic course and 30 hrs advanced course), 3) Review of safety analysis method (IAEA safety concept and requirements), 4) Collaborative assessment of safety analysis code MARS (13 conceptual problem, 2 separate effect test problem, 1 integral effect test problem), 5) Input deck preparation of standard PWR (Preparation of APR1400 input deck and safety analysis of DBA). VAEI staffs have been familiarized to Korean PWR safety assessment technology through the collaboration assessment work using a computer code developed in Korea. The lectures for Vietnamese research will be contributed to the utilization and cultivation of Korean safety technology. The collaborated assessment works will be used for the establishment of MARS based safety analysis system which is independent from US safety assessment system

  1. Safety Systems

    Science.gov (United States)

    Halligan, Tom

    2009-01-01

    Colleges across the country are rising to the task by implementing safety programs, response strategies, and technologies intended to create a secure environment for teachers and students. Whether it is preparing and responding to a natural disaster, health emergency, or act of violence, more schools are making campus safety a top priority. At…

  2. Reliability analysis of PLC safety equipment

    Energy Technology Data Exchange (ETDEWEB)

    Yu, J.; Kim, J. Y. [Chungnam Nat. Univ., Daejeon (Korea, Republic of)

    2006-06-15

    FMEA analysis for Nuclear Safety Grade PLC, failure rate prediction for nuclear safety grade PLC, sensitivity analysis for components failure rate of nuclear safety grade PLC, unavailability analysis support for nuclear safety system.

  3. Reliability analysis of PLC safety equipment

    International Nuclear Information System (INIS)

    Yu, J.; Kim, J. Y.

    2006-06-01

    FMEA analysis for Nuclear Safety Grade PLC, failure rate prediction for nuclear safety grade PLC, sensitivity analysis for components failure rate of nuclear safety grade PLC, unavailability analysis support for nuclear safety system

  4. Availability analysis of safety grade multiple redundant controller used in advanced nuclear safety systems

    International Nuclear Information System (INIS)

    Son, Kwang Seop; Kim, Dong Hoon; Park, Gee Yong; Kang, Hyun Gook

    2018-01-01

    Highlights: •The multiple redundant controller, SPLC is configured as the combination of DMR and TMR architecture. •We construct the Markov model of SPLC using the concept of the system unavailability rate. •To satisfy the availability requirement of safety grade controller, the fault coverage factor (FCF) should be ≥0.8 and the MTTR of each module should be ≤100 h when FCF is 0.9. •The availability of SPLC is better than that of PLC having iTMR architecture however it is poorer than iTMR considering the off-line test and inspection on the assumption that MTTR of each module is ≤200 h. -- Abstract: We analyze the availability of the Safety Programmable Logic Controller (SPLC) having multiple redundant architectures. In the SPLC, input/output and processor module are configured as triple modular redundancy (TMR), and backplane bus, power and communication modules are configured as dual modular redundancy (DMR). The voting logics for redundant architectures are based on the forwarding error detection. It means that the receivers perform the voting logics based on the status information of transmitters. To analyze the availability of SPLC, we construct the Markov model and simplify the model adopting the system unavailability rate. The results show that the fault coverage factor should be ≥0.8 and Mean Time To Repair (MTTR) should be ≤100 h in order to satisfy the requirement that the availability of the safety grade PLC should be ≥0.995. Also we evaluate the availability of SPLC comparing to other PLCs such as simplex, processor DMR (pDMR) and independent TMR (iTMR) PLCs used in the existing nuclear safety systems. The availability of SPLC is higher than those of the simplex, pDMR but is lower than that of iTMR for one month which is the periodic off-line test and inspection. That’s why the number of redundant modules used in PLC is more dominant to increasing the availability than the number of fault masking methods such as voting logics used

  5. Analysis of the reliability of the active injection safety systems of Angra I

    International Nuclear Information System (INIS)

    Frutuoso e Melo, P.F.F.

    1981-01-01

    The reliability of the active emergency core cooling systems of Angra I nuclear power plant is evaluated. The fault tree analysis is employed. The unavailability of the above cited systems, is calculated. A parametric sensitivity analysis has been performed, due to the existing scattering in the failure and repair rate data of these system's components. The minimal cut sets were determined and, as a final step, a reliability importance analysis has been performed. This final step has required the development of a computer program. The methodology and data from the 'Reactor Safety Study' (Wash-1400) (in which the reliability of safety systems of a tipical PWR plant is calculated), is employed. The unavailability values for the safety systems analysed are too low, thus showing that in most cases the systems analysed are available to mitigate the effects of a loss-of-coolant accident. (Author) [pt

  6. Safety analysis of an expert reactor protection system in nuclear power plants

    International Nuclear Information System (INIS)

    El-Kafas, A.A.

    1997-01-01

    The purpose of the dissertation is to develop real time expert reactor protection system (ERPS) for operational safety of pressurized water reactor nuclear power plant. The system is developed to diagnose plant failures and for identification plant transients (with and without scram). For this erps, probabilistic safety analysis techniques are used to check the availability and priority of the recommended safety system in case of plant accidents. The real - time information during transients and accidents can be obtained to assess the operator in his decision - making. Also, the ERPS is able to give advice for the reactor operator to take the appropriate corrective action during abnormal situations. 5-15 figs., 42 refs

  7. An Integrated Approach of Model checking and Temporal Fault Tree for System Safety Analysis

    Energy Technology Data Exchange (ETDEWEB)

    Koh, Kwang Yong; Seong, Poong Hyun [Korea Advanced Institute of Science and Technology, Daejeon (Korea, Republic of)

    2009-10-15

    Digitalization of instruments and control systems in nuclear power plants offers the potential to improve plant safety and reliability through features such as increased hardware reliability and stability, and improved failure detection capability. It however makes the systems and their safety analysis more complex. Originally, safety analysis was applied to hardware system components and formal methods mainly to software. For software-controlled or digitalized systems, it is necessary to integrate both. Fault tree analysis (FTA) which has been one of the most widely used safety analysis technique in nuclear industry suffers from several drawbacks as described in. In this work, to resolve the problems, FTA and model checking are integrated to provide formal, automated and qualitative assistance to informal and/or quantitative safety analysis. Our approach proposes to build a formal model of the system together with fault trees. We introduce several temporal gates based on timed computational tree logic (TCTL) to capture absolute time behaviors of the system and to give concrete semantics to fault tree gates to reduce errors during the analysis, and use model checking technique to automate the reasoning process of FTA.

  8. A Technique of Software Safety Analysis in the Design Phase for PLC Based Safety-Critical Systems

    International Nuclear Information System (INIS)

    Koo, Seo-Ryong; Kim, Chang-Hwoi

    2017-01-01

    The purpose of safety analysis, which is a method of identifying portions of a system that have the potential for unacceptable hazards, is firstly to encourage design changes that will reduce or eliminate hazards and, secondly, to conduct special analyses and tests that can provide increased confidence in especially vulnerable portions of the system. For the design and implementation phase of the PLC based systems, we proposed a technique for software design specification and analysis, and this technique enables us to generate software design specifications (SDSs) in nuclear fields. For the safety analysis in the design phase, we used architecture design blocks of NuFDS to represent the architecture of the software. On the basis of the architecture design specification, we can directly generate the fault tree and then use the fault tree for qualitative analysis. Therefore, we proposed a technique of fault tree synthesis, along with a universal fault tree template for the architecture modules of nuclear software. Through our proposed fault tree synthesis in this work, users can use the architecture specification of the NuFDS approach to intuitively compose fault trees that help analyze the safety design features of software.

  9. Data Analysis of Occupational Health and Safety Management and Total Quality Management Systems

    Directory of Open Access Journals (Sweden)

    Ahmet Yakut

    2013-01-01

    Full Text Available In our study, Total Quality Management, Occupational Health and Safety on the effects of the construction industry, building sites of Istanbul evaluated with the results of the survey of 25 firms. For Occupational Health and Safety program, walked healthy, active employees in her role increased and will increase the importance of education. Due to non-implementation of the OHS system in our country enough, work-related accidents and deaths and injuries resulting from these accidents is very high. Firms as a result of the analysis, an effective health and safety management system needs to be able to fulfill their responsibilities. This system is designated as OHSAS 18001 Occupational Health and Safety Management System and the construction industry can be regarded as the imperatives.

  10. Software safety hazard analysis

    International Nuclear Information System (INIS)

    Lawrence, J.D.

    1996-02-01

    Techniques for analyzing the safety and reliability of analog-based electronic protection systems that serve to mitigate hazards in process control systems have been developed over many years, and are reasonably well understood. An example is the protection system in a nuclear power plant. The extension of these techniques to systems which include digital computers is not well developed, and there is little consensus among software engineering experts and safety experts on how to analyze such systems. One possible technique is to extend hazard analysis to include digital computer-based systems. Software is frequently overlooked during system hazard analyses, but this is unacceptable when the software is in control of a potentially hazardous operation. In such cases, hazard analysis should be extended to fully cover the software. A method for performing software hazard analysis is proposed in this paper

  11. System safety analysis of the Yucca Mountain tunnel boring machine

    International Nuclear Information System (INIS)

    Smith, M.G.; Booth, L.; Eisler, L.

    1995-01-01

    The purpose of this analysis was to systematically identify and evaluate hazards related to the tunnel boring machine to be used at Yucca Mountain. This analysis required three steps to complete the risk evaluation: hazard/scenario identification, consequence assessment, and frequency assessment. The result was a 'risk evaluation' of the scenarios identified in this analysis in accordance with MIL-STD-882C. The risk assessment in this analysis characterized the accident scenarios associated with the TBM in terms of relative risk and included recommendations for mitigating all identified risks

  12. Main Steam Line Break Analysis for the Fully Passive Safety System of SMART

    International Nuclear Information System (INIS)

    Kim, Seong Wook; Chun, Ji Han; Bae, Kyoo Hwan; Kim, Keung Koo

    2013-01-01

    The standard design approval of SMART (System-integrated Modular Advanced ReacTor) developed by KAERI and KEPCO consortium was issued on July 4, 2012. Although SMART has enhanced safety compared to the conventional reactor, there is a demand to meet the 'passive safety performance requirements' after the Fukushima accident. The passive safety performance requirements are the capabilities to maintain the plant at a safe shutdown condition for a minimum of 72 hours without AC power supply or operator action in case of design basis accident (DBA). To satisfy the requirements, KAERI is developing a safety enhanced SMART by adopting a passive safety injection system. The passive safety injection system developed for SMART is a gravity-driven injection system, which consists of four trains, each of which includes a pressure balance line, core makeup tank (CMT), safety injection tank (SIT) and injection line. The CMT plays an important role to inject borated water into the RCS to prevent or dissolve the return to power (re-criticality) condition during the event of increase in heat removal by the secondary system. The main steam line break accident (MSLB) is the most limiting accident for an increase in heat removal by the secondary system. In this study, the safety analysis results of MSLBs at hot full power condition and at hot zero power condition in view of re-criticality are given. The MSLB accident has been analyzed for the SMART adopting fully passive safety system in the aspect of re-criticality. The results show that the core remains subcritical condition throughout the transient due to the borated water injected by the CMT. As further works, many kinds of analyses and sensitivity studies should be performed for the design establishment and improvement of the fully passive system of SMART

  13. Technical difficulties and challenges for performing safety analysis on digital I and C systems

    International Nuclear Information System (INIS)

    Yih, Swu

    1996-01-01

    Performing safety analysis on digital I and C systems is an important task for nuclear safety analysts. The analysis results can not only confirm that the system is well-developed but also provide crucial evidence for licensing process. However, currently both I and C developers and regulators have difficulties in evaluating the safety of digital I and C systems. To investigate this problem, this paper propose a frame-based model to analyze the working and failure mechanisms of software and its interaction with the environment. Valid isomorphic relationship between the logical (software) and the physical (hardware environment) frame is identified as a major factor that determines the safe behavior of the software. The failures that may potentially cause the violation of isomorphic relations are also discussed. To perform safety analysis on digital I and C systems, analysts need to predict the effects incurred by such failures. However, due to lack of continuity, regularity, integrity, and high complexity of software structure, software does not have a stable and predictable pattern of behavior, which in turn makes the trustworthiness of results of software safety analysis susceptible. Our model can explain many troublesome events experienced by computer controlled systems. Implications and possible directions for improvement are also discussed. (author)

  14. Preliminary safety analysis of the HTTR-IS nuclear hydrogen production system

    International Nuclear Information System (INIS)

    Sato, Hiroyuki; Ohashi, Hirofumi; Tazawa, Yujiro; Tachibana, Yukio; Sakaba, Nariaki

    2010-06-01

    Japan Atomic Energy Agency is planning to demonstrate hydrogen production by thermochemical water-splitting IS process utilizing heat from the high-temperature gas-cooled reactor HTTR (HTTR-IS system). The previous study identified that the HTTR modification due to the coupling of hydrogen production plant requires an additional safety review since the scenario and quantitative values of the evaluation items would be altered from the original HTTR safety review. Hence, preliminary safety analyses are conducted by using the system analysis code. Calculation results showed that evaluation items such as a coolant pressure, temperatures of heat transfer tubes at the pressure boundary, etc., did not exceed allowable values. Also, the peak fuel temperature did not exceed allowable value and therefore the reactor core was not damaged and cooled sufficiently. This report compiles calculation conditions, event scenarios and the calculation results of the preliminary safety analysis. (author)

  15. Comprehensive method of common-mode failure analysis for LMFBR safety systems

    International Nuclear Information System (INIS)

    Unione, A.J.; Ritzman, R.L.; Erdmann, R.C.

    1976-01-01

    A technique is demonstrated which allows the systematic treatment of common-mode failures of safety system performance. The technique uses log analysis in the form of fault and success trees to qualitatively assess the sources of common-mode failure and quantitatively estimate the contribution to the overall risk of system failure. The analysis is applied to the secondary control rod system of an early sized LMFBR

  16. Bayesian Statistics and Uncertainty Quantification for Safety Boundary Analysis in Complex Systems

    Science.gov (United States)

    He, Yuning; Davies, Misty Dawn

    2014-01-01

    The analysis of a safety-critical system often requires detailed knowledge of safe regions and their highdimensional non-linear boundaries. We present a statistical approach to iteratively detect and characterize the boundaries, which are provided as parameterized shape candidates. Using methods from uncertainty quantification and active learning, we incrementally construct a statistical model from only few simulation runs and obtain statistically sound estimates of the shape parameters for safety boundaries.

  17. Safety analysis of an expert reactor protection system in nuclear power plants

    International Nuclear Information System (INIS)

    EL-Kafas, A.E.A.E.

    1996-01-01

    the purpose of the dissertation is to develop a real time expert reactor protection system (ERPS) for operational safety of pressurized water reactor nuclear power plant. The system is developed to diagnose plant failures and for identification of plant transients (with and without scram). for this ERPS. probabilistic safety analysis techniques are used to check the availability and priority of the recommended safety system in case of plant accidents . the real- time information during transients and accidents can be obtained to asses the operator in his decision - making . Also, the ERPS is able to give advice for the reactor operator to take the appropriate corrective action during abnormal situations. The system model consists of the dynamic differential equations for reactor core, pressurizer, steam generator, turbine and generator, piping and plenums. The system of equations can be solved by appropriate codes also displayed directly from sensors of the plant. All scenarios of transients, accidents and fault tress for plant systems are learned to ERPS

  18. 14 CFR 417.309 - Flight safety system analysis.

    Science.gov (United States)

    2010-01-01

    ... procedural or human errors; (7) Account for any single failure point on another system that could disable a... required and account for any failure mode where a component and its backup could fail at the same time due...

  19. Software system safety

    Science.gov (United States)

    Uber, James G.

    1988-01-01

    Software itself is not hazardous, but since software and hardware share common interfaces there is an opportunity for software to create hazards. Further, these software systems are complex, and proven methods for the design, analysis, and measurement of software safety are not yet available. Some past software failures, future NASA software trends, software engineering methods, and tools and techniques for various software safety analyses are reviewed. Recommendations to NASA are made based on this review.

  20. The integrated code system CASCADE-3D for advanced core design and safety analysis

    International Nuclear Information System (INIS)

    Neufert, A.; Van de Velde, A.

    1999-01-01

    The new program system CASCADE-3D (Core Analysis and Safety Codes for Advanced Design Evaluation) links some of Siemens advanced code packages for in-core fuel management and accident analysis: SAV95, PANBOX/COBRA and RELAP5. Consequently by using CASCADE-3D the potential of modern fuel assemblies and in-core fuel management strategies can be much better utilized because safety margins which had been reduced due to conservative methods are now predicted more accurately. By this innovative code system the customers can now take full advantage of the recent progress in fuel assembly design and in-core fuel management.(author)

  1. Model-based safety analysis of a control system using Simulink and Simscape extended models

    Directory of Open Access Journals (Sweden)

    Shao Nian

    2017-01-01

    Full Text Available The aircraft or system safety assessment process is an integral part of the overall aircraft development cycle. It is usually characterized by a very high timely and financial effort and can become a critical design driver in certain cases. Therefore, an increasing demand of effective methods to assist the safety assessment process arises within the aerospace community. One approach is the utilization of model-based technology, which is already well-established in the system development, for safety assessment purposes. This paper mainly describes a new tool for Model-Based Safety Analysis. A formal model for an example system is generated and enriched with extended models. Then, system safety analyses are performed on the model with the assistance of automation tools and compared to the results of a manual analysis. The objective of this paper is to improve the increasingly complex aircraft systems development process. This paper develops a new model-based analysis tool in Simulink/Simscape environment.

  2. Reactor safety analysis

    International Nuclear Information System (INIS)

    Arien, B.

    1998-01-01

    Risk assessments of nuclear installations require accurate safety and reliability analyses to estimate the consequences of accidental events and their probability of occurrence. The objective of the work performed in this field at the Belgian Nuclear Research Centre SCK-CEN is to develop expertise in probabilistic and deterministic reactor safety analysis. The four main activities of the research project on reactor safety analysis are: (1) the development of software for the reliable analysis of large systems; (2) the development of an expert system for the aid to diagnosis; (3) the development and the application of a probabilistic reactor-dynamics method, and (4) to participate in the international PHEBUS-FP programme for severe accidents. Progress in research during 1997 is described

  3. YUCCA MOUNTAIN SITE CHARACTERIZATIONS PROJECT TUNNEL BORING MACHINE (TBM) SYSTEM SAFETY ANALYSIS

    International Nuclear Information System (INIS)

    1997-01-01

    The purpose of this analysis is to systematically identify and evaluate hazards related to the tunnel boring machine (TBM) used in the Exploratory Studies Facility (ESF) at the Yucca Mountain Site Characterization Project. This process is an integral part of the systems engineering process; whereby safety is considered during planning, design, testing, and construction. Since the TBM is an ''as built'' system, the MandO is conducting the System Safety Analysis during the construction or assembly phase of the TBM. A largely qualitative approach was used since a radiological System Safety Analysis is not required. The risk assessment in this analysis characterizes the accident scenarios associated with the TBM in terms of relative risk and includes recommendations for mitigating all identified risks. The priority for recommending and implementing mitigation control features is: (1) Incorporate measures to reduce risks and hazards into the system/subsystem/component design, (2) add safety features and capabilities to existing designs, and (3) develop procedures and conduct training to increase worker awareness of potential hazards, on methods to reduce exposure to hazards, and on the actions required to avoid accidents or correct hazardous conditions. The scope of this analysis is limited to the TBM during normal operations, excluding hazards occurring during assembly and test of the TBM or maintenance of the TBM equipment

  4. YUCCA MOUNTAIN SITE CHARACTERIZATIONS PROJECT TUNNEL BORING MACHINE (TBM) SYSTEM SAFETY ANALYSIS

    Energy Technology Data Exchange (ETDEWEB)

    N/A

    1997-02-19

    The purpose of this analysis is to systematically identify and evaluate hazards related to the tunnel boring machine (TBM) used in the Exploratory Studies Facility (ESF) at the Yucca Mountain Site Characterization Project. This process is an integral part of the systems engineering process; whereby safety is considered during planning, design, testing, and construction. Since the TBM is an ''as built'' system, the M&O is conducting the System Safety Analysis during the construction or assembly phase of the TBM. A largely qualitative approach was used since a radiological System Safety Analysis is not required. The risk assessment in this analysis characterizes the accident scenarios associated with the TBM in terms of relative risk and includes recommendations for mitigating all identified risks. The priority for recommending and implementing mitigation control features is: (1) Incorporate measures to reduce risks and hazards into the system/subsystem/component design, (2) add safety features and capabilities to existing designs, and (3) develop procedures and conduct training to increase worker awareness of potential hazards, on methods to reduce exposure to hazards, and on the actions required to avoid accidents or correct hazardous conditions. The scope of this analysis is limited to the TBM during normal operations, excluding hazards occurring during assembly and test of the TBM or maintenance of the TBM equipment.

  5. Information System Hazard Analysis: A Method for Identifying Technology-induced Latent Errors for Safety.

    Science.gov (United States)

    Weber, Jens H; Mason-Blakley, Fieran; Price, Morgan

    2015-01-01

    Many health information and communication technologies (ICT) are safety-critical; moreover, reports of technology-induced adverse events related to them are plentiful in the literature. Despite repeated criticism and calls to action, recent data collected by the Institute of Medicine (IOM) and other organization do not indicate significant improvements with respect to the safety of health ICT systems. A large part of the industry still operates on a reactive "break & patch" model; the application of pro-active, systematic hazard analysis methods for engineering ICT that produce "safe by design" products is sparse. This paper applies one such method: Information System Hazard Analysis (ISHA). ISHA adapts and combines hazard analysis techniques from other safety-critical domains and customizes them for ICT. We provide an overview of the steps involved in ISHA and describe.

  6. Criticality safety analysis of accelerator transmutation waste system

    International Nuclear Information System (INIS)

    Landeyro, P.A.; Cepraga, D.G.; Orazi, A.

    1993-01-01

    The Accelerator Transmutation Waste system (ATW) is under development at the Los Alamos National Laboratory. It consists of a particle accelerator producing a proton beam having an energy of 1.5 GeV. These particles are introduced into the upper part of a molten Pb-Bi column and they produce, by a spallation reaction, a high strength neutron flux, 1.0x10 16 n/(square centimeters sec). The neutrons enter a heavy water blanket where actinides and long-lived fission products circulate in vertical tubes. The goal of this research effort is to perform an independent verification of the feasibility of actinide burning in the ATW system. The work is divided into four tasks: a) production of an actinide and long-lived fission product cross section library from JEF 2.2; b) simulation, using MCNP and KENO IV Monte Carlo codes, of the ATW configurations existing in literature; c) validation of the cross sections by comparison of Keff and reaction rate results, calculated with MCNP and KENO IV, with experimental benchmarks and intercomparison between calculations of a PWR unit cell and the computations carried out with various codes and cross section libraries (NEACRF criticality working group data); d) simulation of the ATW configuration. The two first tasks are almost complete with excellent agreement between this study's results and those of Los Alamos

  7. Software Safety Analysis of Digital Protection System Requirements Using a Qualitative Formal Method

    International Nuclear Information System (INIS)

    Lee, Jang-Soo; Kwon, Kee-Choon; Cha, Sung-Deok

    2004-01-01

    The safety analysis of requirements is a key problem area in the development of software for the digital protection systems of a nuclear power plant. When specifying requirements for software of the digital protection systems and conducting safety analysis, engineers find that requirements are often known only in qualitative terms and that existing fault-tree analysis techniques provide little guidance on formulating and evaluating potential failure modes. A framework for the requirements engineering process is proposed that consists of a qualitative method for requirements specification, called the qualitative formal method (QFM), and a safety analysis method for the requirements based on causality information, called the causal requirements safety analysis (CRSA). CRSA is a technique that qualitatively evaluates causal relationships between software faults and physical hazards. This technique, extending the qualitative formal method process and utilizing information captured in the state trajectory, provides specific guidelines on how to identify failure modes and the relationship among them. The QFM and CRSA processes are described using shutdown system 2 of the Wolsong nuclear power plants as the digital protection system example

  8. Analysis of Aviation Safety Reporting System Incident Data Associated with the Technical Challenges of the System-Wide Safety and Assurance Technologies Project

    Science.gov (United States)

    Withrow, Colleen A.; Reveley, Mary S.

    2015-01-01

    The Aviation Safety Program (AvSP) System-Wide Safety and Assurance Technologies (SSAT) Project asked the AvSP Systems and Portfolio Analysis Team to identify SSAT-related trends. SSAT had four technical challenges: advance safety assurance to enable deployment of NextGen systems; automated discovery of precursors to aviation safety incidents; increasing safety of human-automation interaction by incorporating human performance, and prognostic algorithm design for safety assurance. This report reviews incident data from the NASA Aviation Safety Reporting System (ASRS) for system-component-failure- or-malfunction- (SCFM-) related and human-factor-related incidents for commercial or cargo air carriers (Part 121), commuter airlines (Part 135), and general aviation (Part 91). The data was analyzed by Federal Aviation Regulations (FAR) part, phase of flight, SCFM category, human factor category, and a variety of anomalies and results. There were 38 894 SCFM-related incidents and 83 478 human-factorrelated incidents analyzed between January 1993 and April 2011.

  9. Preliminary Performance Analysis Program Development for Safety System with Safeguard Vessel

    International Nuclear Information System (INIS)

    Kang, Han-Ok; Lee, Jun; Park, Cheon-Tae; Yoon, Ju-Hyeon; Park, Keun-Bae

    2007-01-01

    SMART is an advanced modular integral type pressurized water reactor for a seawater desalination and an electricity production. Major components of the reactor coolant system such as the pressurizer, Reactor Coolant Pump (RCP), and steam generators are located inside the reactor vessel. The SMART can fundamentally eliminate the possibility of large break loss of coolant accidents (LBLOCAs), improve the natural circulation capability, and better accommodate and thus enhance a resistance to a wide range of transients and accidents. The safety goals of the SMART are enhanced through highly reliable safety systems such as the passive residual heat removal system (PRHRS) and the safeguard vessel coupled with the passive safety injection feature. The safeguard vessel is a steel-made, leak-tight pressure vessel housing the RPV, SIT, and the associated valves and pipelines. A primary function of the safeguard vessel is to confine any radioactive release from the primary circuit within the vessel under DBAs related to loss of the integrity of the primary system. A preliminary performance analysis program for a safety system using the safeguard vessel is developed in this study. The developed program is composed of several subroutines for the reactor coolant system, passive safety injection system, safeguard vessel including the pressure suppression pool, and PRHRS. A small break loss of coolant accident at the upper part of a reactor is analyzed and the results are discussed

  10. Reliability analysis of the reconstructed safety systems of the Kozloduy-2 WWER-440/V-230 reactor

    International Nuclear Information System (INIS)

    Kalchev, B.

    1995-01-01

    The Unit 2 of the Kozloduy NPP started operations in 1975. As it is designed according to safety standards of the middle sixties, it needs reconstruction in order to prolong its operational life up to the design age of 30 years, in agreement with the increased safety requirements in Bulgaria. The reliability analyses of front line systems of the unit are performed to this end. The approach taken in the study is the fault tree methodology to determine the unavailability of each system. Common mode failures are considered for the pumps and valves using the beta factor method. The mission time for each system is 24 hours and the test period is 720 hours. Support systems and human errors are also included. All the systems control and instrumentation signals are modelled explicitly in the fault trees. The generic IDEA reliability data base is used for all quantifications. The initiating events that would require the system operation are presented and on this basis the thermohydraulic analysis success criteria for each system are determined. The code for probabilistic safety assessment PSAPACK is used. Fault trees for the following front line safety systems are constructed: the high pressure injection system, the spray system and the auxiliary feed water system. The analysis consider some proposed decisions for reconstruction. The results show that the reliability of these systems has increased after reconstruction and the safety has been upgraded. This decrease the core damage frequency from 3.53E -3 , 1/RY to 1.07E -3 , 1/RY. 5 refs., 2 tabs., 5 figs

  11. Reliability analysis of the reconstructed safety systems of the Kozloduy-2 WWER-440/V-230 reactor

    Energy Technology Data Exchange (ETDEWEB)

    Kalchev, B [Energoproekt, Sofia (Bulgaria)

    1996-12-31

    The Unit 2 of the Kozloduy NPP started operations in 1975. As it is designed according to safety standards of the middle sixties, it needs reconstruction in order to prolong its operational life up to the design age of 30 years, in agreement with the increased safety requirements in Bulgaria. The reliability analyses of front line systems of the unit are performed to this end. The approach taken in the study is the fault tree methodology to determine the unavailability of each system. Common mode failures are considered for the pumps and valves using the beta factor method. The mission time for each system is 24 hours and the test period is 720 hours. Support systems and human errors are also included. All the systems control and instrumentation signals are modelled explicitly in the fault trees. The generic IDEA reliability data base is used for all quantifications. The initiating events that would require the system operation are presented and on this basis the thermohydraulic analysis success criteria for each system are determined. The code for probabilistic safety assessment PSAPACK is used. Fault trees for the following front line safety systems are constructed: the high pressure injection system, the spray system and the auxiliary feed water system. The analysis consider some proposed decisions for reconstruction. The results show that the reliability of these systems has increased after reconstruction and the safety has been upgraded. This decrease the core damage frequency from 3.53E{sup -3}, 1/RY to 1.07E{sup -3}, 1/RY. 5 refs., 2 tabs., 5 figs.

  12. Combining soft system methodology and pareto analysis in safety management performance assessment : an aviation case

    NARCIS (Netherlands)

    Karanikas, Nektarios

    2016-01-01

    Although reengineering is strategically advantageous for organisations in order to keep functional and sustainable, safety must remain a priority and respective efforts need to be maintained. This paper suggests the combination of soft system methodology (SSM) and Pareto analysis on the scope of

  13. Expressing best practices in (risk) analysis and testing of safety-critical systems using patterns

    DEFF Research Database (Denmark)

    Herzner, Wolfgang; Sieverding, Sven; Kacimi, Omar

    2014-01-01

    The continuing pervasion of our society with safety-critical cyber-physical systems not only demands for adequate (risk) analysis, testing and verification techniques, it also generates growing experience on their use, which can be considered as important as the tools themselves for their efficient...

  14. SYSTEMS SAFETY ANALYSIS FOR FIRE EVENTS ASSOCIATED WITH THE ECRB CROSS DRIFT

    International Nuclear Information System (INIS)

    R. J. Garrett

    2001-01-01

    The purpose of this analysis is to systematically identify and evaluate fire hazards related to the Yucca Mountain Site Characterization Project (YMP) Enhanced Characterization of the Repository Block (ECRB) East-West Cross Drift (commonly referred to as the ECRB Cross-Drift). This analysis builds upon prior Exploratory Studies Facility (ESF) System Safety Analyses and incorporates Topopah Springs (TS) Main Drift fire scenarios and ECRB Cross-Drift fire scenarios. Accident scenarios involving the fires in the Main Drift and the ECRB Cross-Drift were previously evaluated in ''Topopah Springs Main Drift System Safety Analysis'' (CRWMS M and O 1995) and the ''Yucca Mountain Site Characterization Project East-West Drift System Safety Analysis'' (CRWMS M and O 1998). In addition to listing required mitigation/control features, this analysis identifies the potential need for procedures and training as part of defense-in-depth mitigation/control features. The inclusion of this information in the System Safety Analysis (SSA) is intended to assist the organization(s) (e.g., Construction, Environmental Safety and Health, Design) responsible for these aspects of the ECRB Cross-Drift in developing mitigation/control features for fire events, including Emergency Refuge Station(s). This SSA was prepared, in part, in response to Condition/Issue Identification and Reporting/Resolution System (CIRS) item 1966. The SSA is an integral part of the systems engineering process, whereby safety is considered during planning, design, testing, and construction. A largely qualitative approach is used which incorporates operating experiences and recommendations from vendors, the constructor and the operating contractor. The risk assessment in this analysis characterizes the scenarios associated with fires in terms of relative risk and includes recommendations for mitigating all identified hazards. The priority for recommending and implementing mitigation control features is: (1) Incorporate

  15. Ignalina Safety Analysis Group

    International Nuclear Information System (INIS)

    Ushpuras, E.

    1995-01-01

    The article describes the fields of activities of Ignalina NPP Safety Analysis Group (ISAG) in the Lithuanian Energy Institute and overview the main achievements gained since the group establishment in 1992. The group is working under the following guidelines: in-depth analysis of the fundamental physical processes of RBMK-1500 reactors; collection, systematization and verification of the design and operational data; simulation and analysis of potential accident consequences; analysis of thermohydraulic and neutronic characteristics of the plant; provision of technical and scientific consultations to VATESI, Governmental authorities, and also international institutions, participating in various projects aiming at Ignalina NPP safety enhancement. The ISAG is performing broad scientific co-operation programs with both Eastern and Western scientific groups, supplying engineering assistance for Ignalina NPP. ISAG is also participating in the joint Lithuanian - Swedish - Russian project - Barselina, the first Probabilistic Safety Assessment (PSA) study of Ignalina NPP. The work is underway together with Maryland University (USA) for assessment of the accident confinement system for a range of breaks in the primary circuit. At present the ISAG personnel is also involved in the project under the grant from the Nuclear Safety Account, administered by the European Bank for reconstruction and development for the preparation and review of an in-depth safety assessment of the Ignalina plant

  16. System safety education focused on system management

    Science.gov (United States)

    Grose, V. L.

    1971-01-01

    System safety is defined and characteristics of the system are outlined. Some of the principle characteristics include role of humans in hazard analysis, clear language for input and output, system interdependence, self containment, and parallel analysis of elements.

  17. The PSA of safety-critical digital I and C system: the determination of important factors and sensitivity analysis

    International Nuclear Information System (INIS)

    Kang, H. G.; Sung, T. Y.; Eom, H. S.; Jeong, H. S.; Park, J. K.; Lee, K. Y.; Park, J. K.

    2002-01-01

    This report is prepared to suggest a practical Probabilistic Safety Assessment (PSA) methodology of safety-critical digital instrumentation and control (I and C) systems. Even though conventional probabilistic safety assessment methods are immature for applying to microprocessor-based digital systems, practical needs force to apply it because the result of probabilistic safety assessment plays very important role in proving the safety of a designed system. Microprocessors and software technologies make the digital system very complex and hard to analyze the safety of their applications. The aim of this is: (1) To summarize the factors which should be represented by the model for probabilistic safety assessment and to propose a standpoint of evaluation for digital systems. (2) To quantitatively presents the results of a mathematical case study which examines the analysis framework of the safety of digital systems in the context of the PSA. (3) To show the results of a sensitivity study for some critical factors

  18. Decision support systems and expert systems for risk and safety analysis

    International Nuclear Information System (INIS)

    Baybutt, P.

    1986-01-01

    During the last 1-2 years, rapid developments have occurred in the development of decision support systems and expert systems to aid in decision making related to risk and safety of industrial plants. These activities are most noteworthy in the nuclear industry where numerous systems are under development with implementation often being made on personal computers. An overview of some of these developments is provided, and an example of one recently developed decision support system is given. This example deals with CADET, a system developed to aid the U.S. Nuclear Regulatory Commission in making decisions related to the topical issue of source terms resulting from degraded core accidents in light water reactors. The paper concludes with some comments on the likely directions of future developments in decision support systems and expert systems to aid in the management of risk and safety in industrial plants. (author)

  19. Design and reliability, availability, maintainability, and safety analysis of a high availability quadruple vital computer system

    Institute of Scientific and Technical Information of China (English)

    Ping TAN; Wei-ting HE; Jia LIN; Hong-ming ZHAO; Jian CHU

    2011-01-01

    With the development of high-speed railways in China,more than 2000 high-speed trains will be put into use.Safety and efficiency of railway transportation is increasingly important.We have designed a high availability quadruple vital computer (HAQVC) system based on the analysis of the architecture of the traditional double 2-out-of-2 system and 2-out-of-3 system.The HAQVC system is a system with high availability and safety,with prominent characteristics such as fire-new internal architecture,high efficiency,reliable data interaction mechanism,and operation state change mechanism.The hardware of the vital CPU is based on ARM7 with the real-time embedded safe operation system (ES-OS).The Markov modeling method is designed to evaluate the reliability,availability,maintainability,and safety (RAMS) of the system.In this paper,we demonstrate that the HAQVC system is more reliable than the all voting triple modular redundancy (AVTMR) system and double 2-out-of-2 system.Thus,the design can be used for a specific application system,such as an airplane or high-speed railway system.

  20. Maintaining scale as a realiable computational system for criticality safety analysis

    International Nuclear Information System (INIS)

    Bowmann, S.M.; Parks, C.V.; Martin, S.K.

    1995-01-01

    Accurate and reliable computational methods are essential for nuclear criticality safety analyses. The SCALE (Standardized Computer Analyses for Licensing Evaluation) computer code system was originally developed at Oak Ridge National Laboratory (ORNL) to enable users to easily set up and perform criticality safety analyses, as well as shielding, depletion, and heat transfer analyses. Over the fifteen-year life of SCALE, the mainstay of the system has been the criticality safety analysis sequences that have featured the KENO-IV and KENO-V.A Monte Carlo codes and the XSDRNPM one-dimensional discrete-ordinates code. The criticality safety analysis sequences provide automated material and problem-dependent resonance processing for each criticality calculation. This report details configuration management which is essential because SCALE consists of more than 25 computer codes (referred to as modules) that share libraries of commonly used subroutines. Changes to a single subroutine in some cases affect almost every module in SCALE exclamation point Controlled access to program source and executables and accurate documentation of modifications are essential to maintaining SCALE as a reliable code system. The modules and subroutine libraries in SCALE are programmed by a staff of approximately ten Code Managers. The SCALE Software Coordinator maintains the SCALE system and is the only person who modifies the production source, executables, and data libraries. All modifications must be authorized by the SCALE Project Leader prior to implementation

  1. Analysis of Aviation Safety Reporting System Incident Data Associated with the Technical Challenges of the Atmospheric Environment Safety Technology Project

    Science.gov (United States)

    Withrow, Colleen A.; Reveley, Mary S.

    2014-01-01

    This study analyzed aircraft incidents in the NASA Aviation Safety Reporting System (ASRS) that apply to two of the three technical challenges (TCs) in NASA's Aviation Safety Program's Atmospheric Environment Safety Technology Project. The aircraft incidents are related to airframe icing and atmospheric hazards TCs. The study reviewed incidents that listed their primary problem as weather or environment-nonweather between 1994 and 2011 for aircraft defined by Federal Aviation Regulations (FAR) Parts 121, 135, and 91. The study investigated the phases of flight, a variety of anomalies, flight conditions, and incidents by FAR part, along with other categories. The first part of the analysis focused on airframe-icing-related incidents and found 275 incidents out of 3526 weather-related incidents over the 18-yr period. The second portion of the study focused on atmospheric hazards and found 4647 incidents over the same time period. Atmospheric hazards-related incidents included a range of conditions from clear air turbulence and wake vortex, to controlled flight toward terrain, ground encounters, and incursions.

  2. Residual Heat Removal System qualitative probabilistic safety analysis before and after auto closure interlock removal

    International Nuclear Information System (INIS)

    Mikulicic, V.; Simic, Z.

    1992-01-01

    The analysis evaluates the consequences of the removal of the auto closure interlock (ACI) on the Residual Heat Removal System (RHRS) suction/isolation valves at the nuclear power plant. The deletion of the RHRS ACI is in part based on a probabilistic safety analysis (PSA) which justifies the removal based on a criterion of increased availability and reliability. Three different areas to be examined in PSA: the likelihood of an interfacing system LOCA; RHRS availability and reliability; and low temperature overpressurization control. The paper emphasizes particularly the RHRS unavailability and reliability evaluation utilizing the current control circuitry configuration and then with the proposed modification to the control circuitry. (author)

  3. Suitability review of FMEA and reliability analysis for digital plant protection system and digital engineered safety features actuation system

    Energy Technology Data Exchange (ETDEWEB)

    Kim, I. S.; Kim, T. K.; Kim, M. C.; Kim, B. S.; Hwang, S. W.; Ryu, K. C. [Hanyang Univ., Seoul (Korea, Republic of)

    2000-11-15

    Of the many items that should be checked out during a review stage of the licensing application for the I and C system of Ulchin 5 and 6 units, this report relates to a suitability review of the reliability analysis of Digital Plant Protection System (DPPS) and Digital Engineered Safety Features Actuation System (DESFAS). In the reliability analysis performed by the system designer, ABB-CE, fault tree analysis was used as the main methods along with Failure Modes and Effect Analysis (FMEA). However, the present regulatory technique dose not allow the system reliability analysis and its results to be appropriately evaluated. Hence, this study was carried out focusing on the following four items ; development of general review items by which to check the validity of a reliability analysis, and the subsequent review of suitability of the reliability analysis for Ulchin 5 and 6 DPPS and DESFAS L development of detailed review items by which to check the validity of an FMEA, and the subsequent review of suitability of the FMEA for Ulchin 5 and 6 DPPS and DESFAS ; development of detailed review items by which to check the validity of a fault tree analysis, and the subsequent review of suitability of the fault tree for Ulchin 5 and 6 DPPS and DESFAS ; an integrated review of the safety and reliability of the Ulchin 5 and 6 DPPS and DESFAS based on the results of the various reviews above and also of a reliability comparison between the digital systems and the comparable analog systems, i.e., and analog Plant Protection System (PPS) and and analog Engineered Safety Features Actuation System (ESFAS). According to the review mentioned above, the reliability analysis of Ulchin 5 and 6 DPPS and DESFAS generally satisfies the review requirements. However, some shortcomings of the analysis were identified in our review such that the assumed test periods for several equipment were not properly incorporated in the analysis, and failures of some equipment were not included in the

  4. Reactor system safety assurance

    International Nuclear Information System (INIS)

    Mattson, R.J.

    1984-01-01

    The philosophy of reactor safety is that design should follow established and conservative engineering practices, there should be safety margins in all modes of plant operation, special systems should be provided for accidents, and safety systems should have redundant components. This philosophy provides ''defense in depth.'' Additionally, the safety of nuclear power plants relies on ''safety systems'' to assure acceptable response to design basis events. Operating experience has shown the need to study plant response to more frequent upset conditions and to account for the influence of operators and non-safety systems on overall performance. Defense in depth is being supplemented by risk and reliability assessment

  5. The software safety analysis based on SFTA for reactor power regulating system in nuclear power plant

    International Nuclear Information System (INIS)

    Liu Zhaohui; Yang Xiaohua; Liao Longtao; Wu Zhiqiang

    2015-01-01

    The digitalized Instrumentation and Control (I and C) system of Nuclear power plants can provide many advantages. However, digital control systems induce new failure modes that differ from those of analog control systems. While the cost effectiveness and flexibility of software is widely recognized, it is very difficult to achieve and prove high levels of dependability and safety assurance for the functions performed by process control software, due to the very flexibility and potential complexity of the software itself. Software safety analysis (SSA) was one way to improve the software safety by identify the system hazards caused by software failure. This paper describes the application of a software fault tree analysis (SFTA) at the software design phase. At first, we evaluate all the software modules of the reactor power regulating system in nuclear power plant and identify various hazards. The SFTA was applied to some critical modules selected from the previous step. At last, we get some new hazards that had not been identified in the prior processes of the document evaluation which were helpful for our design. (author)

  6. Practicality for Software Hazard Analysis for Nuclear Safety I and C System

    International Nuclear Information System (INIS)

    Kim, Yong-Ho; Moon, Kwon-Ki; Chang, Young-Woo; Jeong, Soo-Hyun

    2016-01-01

    We are using the concept of system safety in engineering. It is difficult to make any system perfectly safe and probably a complete system may not easily be achieved. The standard definition of a system from MIL-STD- 882E is: “The organization of hardware, software, material, facilities, personnel, data, and services needed to perform a designated function within a stated environment with specified results.” From the perspective of the system safety engineer and the hazard analysis process, software is considered as a subsystem. Regarding hazard analysis, to date, methods for identifying software failures and determining their effects is still a research problem. Since the success of software development is based on rigorous test of hardware and software, it is necessary to check the balance between software test and hardware test, and in terms of efficiency. Lessons learned and experience from similar systems are important for the work of hazard analysis. No major hazard has been issued for the software developed and verified in Korean NPPs. In addition to hazard analysis, software development, and verification and validation were thoroughly performed. It is reasonable that the test implementation including the development of the test case, stress and abnormal conditions, error recovery situations, and high risk hazardous situations play a key role in detecting and preventing software faults

  7. Practicality for Software Hazard Analysis for Nuclear Safety I and C System

    Energy Technology Data Exchange (ETDEWEB)

    Kim, Yong-Ho; Moon, Kwon-Ki; Chang, Young-Woo; Jeong, Soo-Hyun [KEPCO Engineering and Construction Co., Deajeon (Korea, Republic of)

    2016-10-15

    We are using the concept of system safety in engineering. It is difficult to make any system perfectly safe and probably a complete system may not easily be achieved. The standard definition of a system from MIL-STD- 882E is: “The organization of hardware, software, material, facilities, personnel, data, and services needed to perform a designated function within a stated environment with specified results.” From the perspective of the system safety engineer and the hazard analysis process, software is considered as a subsystem. Regarding hazard analysis, to date, methods for identifying software failures and determining their effects is still a research problem. Since the success of software development is based on rigorous test of hardware and software, it is necessary to check the balance between software test and hardware test, and in terms of efficiency. Lessons learned and experience from similar systems are important for the work of hazard analysis. No major hazard has been issued for the software developed and verified in Korean NPPs. In addition to hazard analysis, software development, and verification and validation were thoroughly performed. It is reasonable that the test implementation including the development of the test case, stress and abnormal conditions, error recovery situations, and high risk hazardous situations play a key role in detecting and preventing software faults.

  8. Safety analysis of RSG-GAS Silicide core using one line cooling system

    International Nuclear Information System (INIS)

    Endiah-Puji-Hastuti

    2003-01-01

    In the frame of minimizing the operation-cost, operation mode using one line cooling system is being evaluated. Maximum reactor has been determined and to continuing this program, steady state and transient analysis were done. The analysis was done by means of a core thermal hydraulic code, COOLOD-N, and PARET. The codes solves core thermal hydraulic equation at steady state conditions and transient, respectively. By using silicide core data and coast down flow rate as the input, thermal hydraulics parameters such as fuel cladding and fuel meat temperatures as well as safety margin against flow instability were calculated. Imposing the safety criteria to the results of steady state and transient analysis, maximum permissible power for this operation was obtained as much as 17.1 MW

  9. Effect Analysis of Digital I and C Systems on Plant Safety based on Fault-Tree Analysis

    International Nuclear Information System (INIS)

    Lee, Seung Jun; Jung, Wondea

    2014-01-01

    Deterioration and an inadequate supply of components of analog I and C systems have led to inefficient and costly maintenance. Moreover, since the fast evolution of digital technology has enabled more reliable functions to be designed for NPP safety, the transition from analog to digital has been accelerated. Owing to the distinguishable characteristics of digital I and C systems, a reliability analysis of digital systems has become an important element of a probabilistic safety assessment (PSA). Digital I and C systems have unique characteristics such as fault-tolerant techniques and software. However, these features have not been properly considered yet in most NPP PSA models. The effect of digital I and C systems should be evaluated by comparing them to that of analog I and C systems. Before installing a digital I and C system, even though it is expected that the plant safety can be improved through the advantageous features of digital I and C systems, it should be validated whether the total NPP safety is better than analog systems or is the same at least. In this work, the fault-tree (FT) technique, which is most widely used in a PSA, was used to compare the effects of analog and digital I and C systems. From a case study, the results of plant safety were compared. In this work, the effect of a digital RPS was evaluated by comparing it to that of an analog RPS based on the FT models. In the evaluation results, it was observed that digital RPS has a positive effect on reducing the system unavailability. The analysis results can be used for the development of a guide for evaluating digital I and C systems and reliability requirements

  10. Safety analysis report for packaging onsite long-length contaminated equipment transport system

    International Nuclear Information System (INIS)

    McCormick, W.A.

    1997-01-01

    This safety analysis report for packaging describes the components of the long-length contaminated equipment (LLCE) transport system (TS) and provides the analyses, evaluations, and associated operational controls necessary for the safe use of the LLCE TS on the Hanford Site. The LLCE TS will provide a standardized, comprehensive approach for the disposal of approximately 98% of LLCE scheduled to be removed from the 200 Area waste tanks

  11. Safety analysis report for packaging, onsite, long-length contaminated equipment transport system

    Energy Technology Data Exchange (ETDEWEB)

    McCormick, W.A.

    1997-05-09

    This safety analysis report for packaging describes the components of the long-length contaminated equipment (LLCE) transport system (TS) and provides the analyses, evaluations, and associated operational controls necessary for the safe use of the LLCE TS on the Hanford Site. The LLCE TS will provide a standardized, comprehensive approach for the disposal of approximately 98% of LLCE scheduled to be removed from the 200 Area waste tanks.

  12. ACCIDENT ANALYSES & CONTROL OPTIONS IN SUPPORT OF THE SLUDGE WATER SYSTEM SAFETY ANALYSIS

    Energy Technology Data Exchange (ETDEWEB)

    WILLIAMS, J.C.

    2003-11-15

    This report documents the accident analyses and nuclear safety control options for use in Revision 7 of HNF-SD-WM-SAR-062, ''K Basins Safety Analysis Report'' and Revision 4 of HNF-SD-SNF-TSR-001, ''Technical Safety Requirements - 100 KE and 100 KW Fuel Storage Basins''. These documents will define the authorization basis for Sludge Water System (SWS) operations. This report follows the guidance of DOE-STD-3009-94, ''Preparation Guide for US. Department of Energy Nonreactor Nuclear Facility Safety Analysis Reports'', for calculating onsite and offsite consequences. The accident analysis summary is shown in Table ES-1 below. While this document describes and discusses potential control options to either mitigate or prevent the accidents discussed herein, it should be made clear that the final control selection for any accident is determined and presented in HNF-SD-WM-SAR-062.

  13. Architecture for interlock systems: reliability analysis with regard to safety and availability

    International Nuclear Information System (INIS)

    Wagner, S.; Apollonio, A.; Schmidt, R.; Zerlauth, M.; Vergara-Fernandez, A.

    2012-01-01

    For particle accelerators like LHC and other large experimental physics facilities like ITER, the machine protection relies on complex interlock systems. In the design of interlock loops for the signal exchange in machine protection systems, the choice of the hardware architecture impacts on machine safety and availability. The reliable performance of a machine stop (leaving the machine in a safe state) in case of an emergency, is an inherent requirement. The constraints in terms of machine availability on the other hand may differ from one facility to another. Spurious machine stops, lowering machine availability, may to a certain extent be tolerated in facilities where they do not cause undue equipment wear-out. In order to compare various interlock loop architectures in terms of safety and availability, the occurrence frequencies of related scenarios have been calculated in a reliability analysis, using a generic analytical model. This paper presents the results and illustrates the potential of the analysis method for supporting the choice of interlock system architectures. The results show the advantages of a 2003 (3 redundant lines with 2-out-of-3 voting) over the 6 architectures under consideration for systems with high requirements in both safety and availability

  14. Deep Borehole Disposal Safety Analysis.

    Energy Technology Data Exchange (ETDEWEB)

    Freeze, Geoffrey A. [Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States); Stein, Emily [Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States); Price, Laura L. [Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States); MacKinnon, Robert J. [Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States); Tillman, Jack Bruce [Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States)

    2016-10-01

    This report presents a preliminary safety analysis for the deep borehole disposal (DBD) concept, using a safety case framework. A safety case is an integrated collection of qualitative and quantitative arguments, evidence, and analyses that substantiate the safety, and the level of confidence in the safety, of a geologic repository. This safety case framework for DBD follows the outline of the elements of a safety case, and identifies the types of information that will be required to satisfy these elements. At this very preliminary phase of development, the DBD safety case focuses on the generic feasibility of the DBD concept. It is based on potential system designs, waste forms, engineering, and geologic conditions; however, no specific site or regulatory framework exists. It will progress to a site-specific safety case as the DBD concept advances into a site-specific phase, progressing through consent-based site selection and site investigation and characterization.

  15. System study application to the safety analysis of the exhaust and the tritium systems of a fusion reactor

    International Nuclear Information System (INIS)

    Djerassi, H.; Rouillard, J.; Leger, D.; Zappellini, G.; Gambi, G.

    1988-01-01

    An applicative example of the general methodology system study to the safety analysis of the exhaust and tritium systems, in a tokamak device, is shown. The framework of the study is split into the following tasks: initial information collection, functional analysis, failure scenarios identification and description, reliability data assessment, accident sequence quantification, consequence seriousness evaluation, risk assessment. Results concerning risk contribution from direct failures show that, in the exhaust system and in the tritium system, the risk contribution to public is rather smaller than the safety design targets. Nevertheless, if the reactor building is not taken into account, the risk contribution from the exhaust system can be significant. Risk contribution to the workers seems to be not to heavy

  16. System analysis of nuclear safety of VVER reactor with MOX fuel

    Energy Technology Data Exchange (ETDEWEB)

    Klimov, A.D.; Zharkov, V.P.; Suslov, I.R. [Russia, Moscow Malaya Krasnoselskaya St. (Russian Federation); Boyarinov, V.F.; Kevrolev, V.V.; Tchibinyaev, A.V.; Tsibulskiy, V.F. [RRC KI, Russia, Moscow (Russian Federation); Kochurov, B.P. [ITEP, Russia, Moscow (Russian Federation); Giovanni, B. [NFPSC, FRAMATOME (France)

    2005-07-01

    The report presents a short summary of the results achieved in the ISTC (International Science and Technology Center) project 'System analysis of nuclear safety of VVER reactor with MOX fuel' (April 2005). The studies within the project are of a systematic character and include the solutions of 15 tasks. The report gives an overview of the major blocks of these tasks: neutron transport equation solution; calculations of isotopic vectors, analysis of the impact of uncertainties on predicted reactor functionals. The calculation methods, the verification results and the corresponding codes are briefly described. (authors)

  17. Management system of health and safety work (SMK3) with job safety analysis (JSA) in PT. Nira Murni construction

    Science.gov (United States)

    Melliana, Armen, Yusrizal, Akmal, Syarifah

    2017-11-01

    PT Nira Murni construction is a contractor of PT Chevron Pacific Indonesia which engaged in contractor, fabrication, maintenance construction suppliers, and labor services. The high of accident rate in this company is caused the lack of awareness of workplace safety. Therefore, it requires an effort to reduce the accident rate on the company so that the financial losses can be minimized. In this study, Safe T-Score method is used to analyze the accident rate by measuring the level of frequency. Analysis is continued using risk management methods which identify hazards, risk measurement and risk management. The last analysis uses Job safety analysis (JSA) which will identify the effect of accidents. From the result of this study can be concluded that Job Safety Analysis (JSA) methods has not been implemented properly. Therefore, JSA method needs to follow-up in the next study, so that can be well applied as prevention of occupational accidents.

  18. YUCCA MOUNTAIN SITE CHARACTERIZATION PROJECT EAST-WEST DRIFT SYSTEM SAFETY ANALYSIS

    Energy Technology Data Exchange (ETDEWEB)

    NA

    1999-06-08

    The purpose of this analysis is to systematically identify and evaluate hazards related to the design of the Yucca Mountain Project Exploratory Studies Facility (ESF) East-West Cross Drift. This analysis builds upon prior ESF System Safety Analyses and incorporates TS Main Drift scenarios, where applicable, into the East-West Drift scenarios. This System Safety Analysis (SSA) focuses on the personnel safety and health hazards associated with the engineered design of the East-West Drift. The analysis also evaluates other aspects of the East-West Drift, including purchased equipment (e.g., scientific mapping platform) or Systems/Structures/Components (SSCs) and out-of-tolerance conditions. In addition to recommending design mitigation features, the analysis identifies the potential need for procedures, training, or Job Safety Analyses (JSAs). The inclusion of this information in the SSA is intended to assist the organization(s) (e.g., constructor, Safety and Health, design) responsible for these aspects of the East-West Drift in evaluating personnel hazards and augment the information developed by these organizations. The SSA is an integral part of the systems engineering process, whereby safety is considered during planning, design, testing, and construction. A largely qualitative approach is used which incorporates operating experiences and recommendations from vendors, the constructor and the operating contractor. The risk assessment in this analysis characterizes the scenarios associated with East-West Drift SSCs in terms of relative risk and includes recommendations for mitigating all identified hazards. The priority for recommending and implementing mitigation control features is: (1) Incorporate measures to reduce risks and hazards into SSC designs. (2) Add safety features and capabilities to existing designs. (3) Develop procedures and conduct training to increase worker awareness of potential hazards, reduce exposure to hazards, and inform personnel of the

  19. Probabilistic Safety Assessment: An Effective Tool to Support “Systemic Approach” to Nuclear Safety and Analysis of Human and Organizational Aspects

    International Nuclear Information System (INIS)

    Kuzmina, I.

    2016-01-01

    The Probabilistic Safety Assessment (PSA) represents a comprehensive conceptual and analytical tool for quantitative evaluation of risk of undesirable consequences from nuclear facilities and drawing on qualitative insights for nuclear safety. PSA considers various technical, human, and organizational factors in an integral manner thus explicitly pursuing a true ‘systemic approach’ to safety and enabling holistic insights for further safety improvement. Human Reliability Analysis (HRA) is one of the major tasks within PSA. The poster paper provides an overview of the objectives and scope of PSA and HRA and discusses on further needs in the area of HRA. (author)

  20. Nuclear reactor safety system

    International Nuclear Information System (INIS)

    Ball, R.M.; Roberts, R.C.

    1983-01-01

    The invention provides a safety system for a nuclear reactor which uses a parallel combination of computer type look-up tables each of which receives data on a particular parameter (from transducers located in the reactor system) and each of which produces the functional counterpart of that particular parameter. The various functional counterparts are then added together to form a control signal for shutting down the reactor. The functional counterparts are developed by analysis of experimental thermal and hydraulic data, which are used to form expressions that define safe conditions

  1. Unavailability analysis of a PWR safety system by a Bayesian network

    International Nuclear Information System (INIS)

    Estevao, Lilian B.; Melo, Paulo Fernando F. Frutuoso e; Rivero, Jose J.

    2013-01-01

    Bayesian networks (BN) are directed acyclic graphs that have dependencies between variables, which are represented by nodes. These dependencies are represented by lines connecting the nodes and can be directed or not. Thus, it is possible to model conditional probabilities and calculate them with the help of Bayes' Theorem. The objective of this paper is to present the modeling of the failure of a safety system of a typical second generation light water reactor plant, the Containment Heat Removal System (CHRS), whose function is to cool the water of containment reservoir being recirculated through the Containment Spray Recirculation System (CSRS). CSRS is automatically initiated after a loss of coolant accident (LOCA) and together with the CHRS cools the reservoir water. The choice of this system was due to the fact that its analysis by a fault tree is available in Appendix II of the Reactor Safety Study Report (WASH-1400), and therefore all the necessary technical information is also available, such as system diagrams, failure data input and the fault tree itself that was developed to study system failure. The reason for the use of a bayesian network in this context was to assess its ability to reproduce the results of fault tree analyses and also verify the feasibility of treating dependent events. Comparing the fault trees and bayesian networks, the results obtained for the system failure were very close. (author)

  2. Preliminary thermal-hydraulic and safety analysis of China DFLL-TBM system

    Energy Technology Data Exchange (ETDEWEB)

    Li, Wei [School of Nuclear Science and Technology, Xi’an Jiaotong University, No. 28, Xianning West Road, Xi’an, Shanxi 710049 (China); Tian, Wenxi, E-mail: wxtian@mail.xjtu.edu.cn [School of Nuclear Science and Technology, Xi’an Jiaotong University, No. 28, Xianning West Road, Xi’an, Shanxi 710049 (China); Qiu, Suizheng; Su, Guanghui; Jiao, Hong [School of Nuclear Science and Technology, Xi’an Jiaotong University, No. 28, Xianning West Road, Xi’an, Shanxi 710049 (China); Bai, Yunqing; Chen, Hongli [Institute of Nuclear Energy Safety Technology, Chinese Academy of Sciences, Hefei, Anhui 230031 (China); Wu, Yican, E-mail: yican.Wu@Fds.Org.Cn [Institute of Nuclear Energy Safety Technology, Chinese Academy of Sciences, Hefei, Anhui 230031 (China)

    2013-06-15

    Highlights: • Thermal-hydraulic and safety analysis on DFLL-TBM system is performed. • The TBM FW maximum temperature is 541 °C under steady state condition. • The TBM FW maximum temperature does not exceed the melt point of CLAM steel 1500 °C. • Neither the VV pressurization nor vault pressure build-up goes beyond 0.2 MPa. -- Abstract: China has proposed the dual-functional lithium-lead (DFLL) tritium breeding blanket concept for testing in ITER as a test blanket module (TBM), to demonstrate the technologies of tritium self-sufficiency, high-grade heat extraction and efficient electricity production which are needed for DEMO and fusion power plant. Safety assessment of the TBM and its auxiliary system should be conducted to deal with ITER safety issues directly caused by the TBM system failure during the design process. In this work, three potential initial events (PIEs) – in-vessel loss of helium (He) coolant and ex-vessel loss of He coolant and loss of flow without scram (LOFWS) – were analyzed for the TBM system with a modified version of the RELAP5/MOD3 code containing liquid lithium-lead eutectic (LiPb). The code also comprised an empirical expression for MHD pressure drop relevant to three-dimensional (3D) effect, the Lubarsky–Kaufman convective heat transfer correlation for LiPb flow and the Gnielinski convective heat transfer correlation for He flow. Since both LiPb and He serve as TBM coolants, the LiPb and He ancillary cooling systems were modeled to investigate the thermal-hydraulic characteristic of the TBM system and its influence on ITER safety under those accident conditions. The TBM components and the coolants flow within the TBM were simulated with one-dimensional heat structures and their associated hydrodynamic components. ITER enclosures including vacuum vessel (VV), port cell and TCWS vault were also covered in the model for accident analyses. Through this best estimate approach, the calculation indicated that the current

  3. Safety system function trends

    International Nuclear Information System (INIS)

    Johnson, C.

    1989-01-01

    This paper describes research to develop risk-based indicators of plant safety performance. One measure of the safety-performance of operating nuclear power plants is the unavailability of important safety systems. Brookhaven National Laboratory and Science Applications International Corporation are evaluating ways to aggregate train-level or component-level data to provide such an indicator. This type of indicator would respond to changes in plant safety margins faster than the currently used indicator of safety system unavailability (i.e., safety system failures reported in licensee event reports). Trends in the proposed indicator would be one indication of trends in plant safety performance and maintenance effectiveness. This paper summarizes the basis for such an indicator, identifies technical issues to be resolved, and illustrates the potential usefullness of such indicators by means of computer simulations and case studies

  4. K Basin safety analysis

    International Nuclear Information System (INIS)

    Porten, D.R.; Crowe, R.D.

    1994-01-01

    The purpose of this accident safety analysis is to document in detail, analyses whose results were reported in summary form in the K Basins Safety Analysis Report WHC-SD-SNF-SAR-001. The safety analysis addressed the potential for release of radioactive and non-radioactive hazardous material located in the K Basins and their supporting facilities. The safety analysis covers the hazards associated with normal K Basin fuel storage and handling operations, fuel encapsulation, sludge encapsulation, and canister clean-up and disposal. After a review of the Criticality Safety Evaluation of the K Basin activities, the following postulated events were evaluated: Crane failure and casks dropped into loadout pit; Design basis earthquake; Hypothetical loss of basin water accident analysis; Combustion of uranium fuel following dryout; Crane failure and cask dropped onto floor of transfer area; Spent ion exchange shipment for burial; Hydrogen deflagration in ion exchange modules and filters; Release of Chlorine; Power availability and reliability; and Ashfall

  5. Beneficial uses shipping system (BUSS) cask, safety analysis report for packaging: Volumes 1 and 2

    International Nuclear Information System (INIS)

    Ferrell, P.C.

    1997-01-01

    The Beneficial Uses Shipping System (BUSS) cask Safety Analysis Report for Packaging (SARP) was originally prepared by Sandia National Laboratory (SNL). After the certification process was completed, the ownership of the BUSS cask and associated SARP was transferred from SNL to the DOE Hanford site in Richland, Washington. During timely renewal of the BUSS cask certificate of compliance, the SARP was revised to (1) respond to the timely renewal questions, (2) consolidate the previous revision made by SNL, and (3) bring the SARP into compliance with the 1996 version of 10 CFR 71. Since the BUSS cask is now the responsibility of RL, the SARP was reissued as a Hanford document

  6. Failure Modes Effects and Criticality Analysis, an Underutilized Safety, Reliability, Project Management and Systems Engineering Tool

    Science.gov (United States)

    Mullin, Daniel Richard

    2013-09-01

    The majority of space programs whether manned or unmanned for science or exploration require that a Failure Modes Effects and Criticality Analysis (FMECA) be performed as part of their safety and reliability activities. This comes as no surprise given that FMECAs have been an integral part of the reliability engineer's toolkit since the 1950s. The reasons for performing a FMECA are well known including fleshing out system single point failures, system hazards and critical components and functions. However, in the author's ten years' experience as a space systems safety and reliability engineer, findings demonstrate that the FMECA is often performed as an afterthought, simply to meet contract deliverable requirements and is often started long after the system requirements allocation and preliminary design have been completed. There are also important qualitative and quantitative components often missing which can provide useful data to all of project stakeholders. These include; probability of occurrence, probability of detection, time to effect and time to detect and, finally, the Risk Priority Number. This is unfortunate as the FMECA is a powerful system design tool that when used effectively, can help optimize system function while minimizing the risk of failure. When performed as early as possible in conjunction with writing the top level system requirements, the FMECA can provide instant feedback on the viability of the requirements while providing a valuable sanity check early in the design process. It can indicate which areas of the system will require redundancy and which areas are inherently the most risky from the onset. Based on historical and practical examples, it is this author's contention that FMECAs are an immense source of important information for all involved stakeholders in a given project and can provide several benefits including, efficient project management with respect to cost and schedule, system engineering and requirements management

  7. The dynamic flowgraph methodology as a safety analysis tool : programmable electronic system design and verification

    NARCIS (Netherlands)

    Houtermans, M.J.M.; Apostolakis, G.E.; Brombacher, A.C.; Karydas, D.M.

    2002-01-01

    The objective of this paper is to demonstrate the use of the Dynamic Flowgraph Methodology (DFM) during the design and verification of programmable electronic safety-related systems. The safety system consists of hardware as well as software. This paper explains and demonstrates the use of DFM, and

  8. Safety analysis procedures for PHWR

    International Nuclear Information System (INIS)

    Min, Byung Joo; Kim, Hyoung Tae; Yoo, Kun Joong

    2004-03-01

    The methodology of safety analyses for CANDU reactors in Canada, a vendor country, uses a combination of best-estimate physical models and conservative input parameters so as to minimize the uncertainty of the plant behavior predictions. As using the conservative input parameters, the results of the safety analyses are assured the regulatory requirements such as the public dose, the integrity of fuel and fuel channel, the integrity of containment and reactor structures, etc. However, there is not the comprehensive and systematic procedures for safety analyses for CANDU reactors in Korea. In this regard, the development of the safety analyses procedures for CANDU reactors is being conducted not only to establish the safety analyses system, but also to enhance the quality assurance of the safety assessment. In the first phase of this study, the general procedures of the deterministic safety analyses are developed. The general safety procedures are covered the specification of the initial event, selection of the methodology and accident sequences, computer codes, safety analysis procedures, verification of errors and uncertainties, etc. Finally, These general procedures of the safety analyses are applied to the Large Break Loss Of Coolant Accident (LBLOCA) in Final Safety Analysis Report (FSAR) for Wolsong units 2, 3, 4

  9. Reliability analysis of the recirculation phase of the safety injection system of Angra-1

    International Nuclear Information System (INIS)

    Rivera, R.R.J.M.

    1981-09-01

    The calculation of several reliability parameters-failure probability, unavailability and unreliability - of the recirculation phase of the safety injection system of Angra-1, was done. This system has two distinct modes of operation (short term and long term) which were fault tree analysed both separately and as a whole. To obtain quantitative results the computer codes SAMPLE and PRET-KITT were utilized. The former was used to consider the uncertainties in the failure data (drawn integrally from WASH-1400) and the latter to obtain time dependent unreliability values. Hardware failures and common-mode failures were considered. Altough the analysis methods employed here differ somewhat from those used in WASH-1400, the results which could be compared were found to have the order of magnitude. A viability study of some suggestions of system's modifications was performed, and it has shown that some significant reliability improvements can be achieved with reasonably simple changes. (Author) [pt

  10. Perspectives on the development of next generation reactor systems safety analysis codes

    International Nuclear Information System (INIS)

    Zhang, H.

    2015-01-01

    'Full text:' Existing reactor system analysis codes, such as RELAP5-3D and TRAC, have gained worldwide success in supporting reactor safety analyses, as well as design and licensing of new reactors. These codes are important assets to the nuclear engineering research community, as well as to the nuclear industry. However, most of these codes were originally developed during the 1970s', and it becomes necessary to develop next-generation reactor system analysis codes for several reasons. Firstly, as new reactor designs emerge, there are new challenges emerging in numerical simulations of reactor systems such as long lasting transients and multi-physics phenomena. These new requirements are beyond the range of applicability of the existing system analysis codes. Advanced modeling and numerical methods must be taken into consideration to improve the existing capabilities. Secondly, by developing next-generation reactor system analysis codes, the knowledge (know how) in two phase flow modeling and the highly complex constitutive models will be transferred to the young generation of nuclear engineers. And thirdly, all computer codes have limited shelf life. It becomes less and less cost-effective to maintain a legacy code, due to the fast change of computer hardware and software environment. There are several critical perspectives in terms of developing next-generation reactor system analysis codes: 1) The success of the next-generation codes must be built upon the success of the existing codes. The knowledge of the existing codes, not just simply the manuals and codes, but knowing why and how, must be transferred to the next-generation codes. The next-generation codes should encompass the capability of the existing codes. The shortcomings of existing codes should be identified, understood, and properly categorized, for example into model deficiencies or numerical method deficiencies. 2) State-of-the-art models and numerical methods must be considered to

  11. Perspectives on the development of next generation reactor systems safety analysis codes

    Energy Technology Data Exchange (ETDEWEB)

    Zhang, H., E-mail: Hongbin.Zhang@inl.gov [Idaho National Laboratory, Idaho Falls, ID (United States)

    2015-07-01

    'Full text:' Existing reactor system analysis codes, such as RELAP5-3D and TRAC, have gained worldwide success in supporting reactor safety analyses, as well as design and licensing of new reactors. These codes are important assets to the nuclear engineering research community, as well as to the nuclear industry. However, most of these codes were originally developed during the 1970s', and it becomes necessary to develop next-generation reactor system analysis codes for several reasons. Firstly, as new reactor designs emerge, there are new challenges emerging in numerical simulations of reactor systems such as long lasting transients and multi-physics phenomena. These new requirements are beyond the range of applicability of the existing system analysis codes. Advanced modeling and numerical methods must be taken into consideration to improve the existing capabilities. Secondly, by developing next-generation reactor system analysis codes, the knowledge (know how) in two phase flow modeling and the highly complex constitutive models will be transferred to the young generation of nuclear engineers. And thirdly, all computer codes have limited shelf life. It becomes less and less cost-effective to maintain a legacy code, due to the fast change of computer hardware and software environment. There are several critical perspectives in terms of developing next-generation reactor system analysis codes: 1) The success of the next-generation codes must be built upon the success of the existing codes. The knowledge of the existing codes, not just simply the manuals and codes, but knowing why and how, must be transferred to the next-generation codes. The next-generation codes should encompass the capability of the existing codes. The shortcomings of existing codes should be identified, understood, and properly categorized, for example into model deficiencies or numerical method deficiencies. 2) State-of-the-art models and numerical methods must be considered to

  12. Multi-objective optimization of a cascade refrigeration system: Exergetic, economic, environmental, and inherent safety analysis

    International Nuclear Information System (INIS)

    Eini, Saeed; Shahhosseini, Hamidreza; Delgarm, Navid; Lee, Moonyong; Bahadori, Alireza

    2016-01-01

    Highlights: • A multi-objective optimization is performed for a cascade refrigeration cycle. • The optimization problem considers inherently safe design as well as 3E analysis. • As a measure of inherent safety level a quantitative risk analysis is utilized. • A CO 2 /NH 3 cascade refrigeration system is compared with a CO 2 /C 3 H 8 system. - Abstract: Inherently safer design is the new approach to maximize the overall safety of a process plant. This approach suggests some risk reduction strategies to be implemented in the early stages of design. In this paper a multi-objective optimization was performed considering economic, exergetic, and environmental aspects besides evaluation of the inherent safety level of a cascade refrigeration system. The capital costs, the processing costs, and the social cost due to CO 2 emission were considered to be included in the economic objective function. Exergetic efficiency of the plant was considered as the second objective function. As a measure of inherent safety level, Quantitative Risk Assessment (QRA) was performed to calculate total risk level of the cascade as the third objective function. Two cases (ammonia and propane) were considered to be compared as the refrigerant of the high temperature circuit. The achieved optimum solutions from the multi–objective optimization process were given as Pareto frontier. The ultimate optimal solution from available solutions on the Pareto optimal curve was selected using Decision-Makings approaches. NSGA-II algorithm was used to obtain Pareto optimal frontiers. Also, three decision-making approaches (TOPSIS, LINMAP, and Shannon’s entropy methods) were utilized to select the final optimum point. Considering continuous material release from the major equipment in the plant, flash and jet fire scenarios were considered for the CO 2 /C 3 H 8 cycle and toxic hazards were considered for the CO 2 /NH 3 cycle. The results showed no significant differences between CO 2 /NH 3 and

  13. Safety analysis for 'Fugen'

    International Nuclear Information System (INIS)

    1997-10-01

    The improvement of safety in nuclear power stations is an important proposition. Therefore also as to the safety evaluation, it is important to comprehensively and systematically execute it by referring to the operational experience and the new knowledge which is important for the safety throughout the period of use as well as before the construction and the start of operation of nuclear power stations. In this report, the results when the safety analysis for ''Fugen'' was carried out by referring to the newest technical knowledge are described. As the result, it was able to be confirmed that the safety of ''Fugen'' has been secured by the inherent safety and the facilities which were designed for securing the safety. The basic way of thinking on the safety analysis including the guidelines to be conformed to is mentioned. As to the abnormal transient change in operation and accidents, their definition, the events to be evaluated and the standards for judgement are reported. The matters which were taken in consideration at the time of the analysis are shown. The computation programs used for the analysis were REACT, HEATUP, LAYMON, FATRAC, SENHOR, LOTRAC, FLOOD and CONPOL. The analyses of the abnormal transient change in operation and accidents are reported on the causes, countermeasures, protective functions and results. (K.I.)

  14. Development of a web based monitoring system for safety and activity analysis in operating theatres.

    Science.gov (United States)

    Frosini, Francesco; Miniati, Roberto; Avezzano, Paolo; Cecconi, Giulio; Dori, Fabrizio; Gentili, Guido Biffi; Belardinelli, Andrea

    2016-01-01

    The management and the monitoring of the operating rooms on the part of the general management have the objective of optimizing their use and maximizing the internal safety. The expenses owed to their safe use represent, besides reimbursements coming from the surgical activity, important factors for the analysis of the medical facility. Given that it is not possible to reduce the safety, it is necessary to develop supporting systems with the aim to enhance and optimize the use of the rooms. The developed analysis model of the operating rooms in this study is based on the specific performance indicators and allows the effective monitoring of both the parameters that influence the safety (environmental, microbiological parameters) and those that influence the efficiency of the usage (employment rate, delays, necessary formalities, etc.). This allows you to have a systematic dashboard on hand for all of the OTs and, thus, organize the intervention schedules and more appropriate improvements. A monitoring dashboard has been achieved, accessible from any platform and any device, capable of aggregating hospital information. The undertaken organizational modifications, through the use of the dashboard, have allowed for an average annual savings of 29.52 minutes per intervention and increase the use of the ORs of 5%. The increment of the employment rate and the optimization of the operating room have allowed for savings of around $299,88 for every intervention carried out in 2013, corresponding to an annual savings of $343,362,60. Integration dashboards, as the one proposed in this study as a prototype, represent a governance model of economically sustainable healthcare systems capable of guiding the hospital management in the choices and in the implementation of the most efficient organizational modifications.

  15. Laser Safety and Hazard Analysis for the Trailer (B70) Based AURA Laser System

    International Nuclear Information System (INIS)

    AUGUSTONI, ARNOLD L.

    2003-01-01

    A laser safety and hazard analysis was performed for the AURA laser system based on the 2000 version of the American National Standards Institute's (ANSI) Standard Z136.1, for ''Safe Use of Lasers'' and the 2000 version of the ANSI Standard Z136.6, for ''Safe Use of Lasers Outdoors''. The trailer based AURA laser system is a mobile platform, which is used to perform laser interaction experiments and tests at various national test sites. The trailer (B70) based AURA laser system is generally operated on the United State Air Force Starfire Optical Range (SOR) at Kirtland Air Force Base (KAFB), New Mexico. The laser is used to perform laser interaction testing inside the laser trailer as well as outside the trailer at target sites located at various distances from the exit telescope. In order to protect personnel, who work inside the Nominal Hazard Zone (NHZ), from hazardous laser emission exposures it was necessary to determine the Maximum Permissible Exposure (MPE) for each laser wavelength (wavelength bands) and calculate the appropriate minimum Optical Density (OD min ) of the laser safety eyewear used by authorized personnel and the Nominal Ocular Hazard Distance (NOHD) to protect unauthorized personnel who may have violated the boundaries of the control area and enter into the laser's NHZ

  16. Preliminary analysis of the safety and environmental impact of the Tritium Systems Test Assembly

    International Nuclear Information System (INIS)

    Carlson, R.V.; Jalbert, R.A.

    1980-01-01

    The Tritium Systems Test Assembly (TSTA) is a facility dedicated to the development of technologies associated with the D-T fuel cycle of future fusion reactors while demonstrating that TSTA can be operated safely with no significant losses to the environment. During the initial design stage of TSTA, a safety analysis was performed which investigated the effects of major subsystem component failure, the meteorology and seismicity of the site and their possible effect on the facility, and accident scenarios which result in tritium releases. Major releases of tritium to the environment are considered highly improbable since they require a compound failure of primary and secondary containment, along with either a breach of the building or a failure of the Emergency Tritium Cleanup system. Accidental releases caused by natural phenomena (earthquake, tornado, etc.) are considered highly improbable

  17. Safety analysis of coupling system of hybrid (MED-RO) nuclear desalination system utilising waste heat from HTGR

    International Nuclear Information System (INIS)

    Raha, Abhijit; Kishore, G.; Rao, I.S.; Adak, A.K.; Srivastava, V.K.; Prabhakar, S.; Tewari, P.K.

    2010-01-01

    To meet the generation IV goals, High Temperature Gas Cooled Reactors (HTGRs) are designed to have relatively higher thermal efficiency and enhanced safety and environmental characteristics. It can provide energy for combined production of hydrogen, electricity and other industrial applications. The waste heat available in the HTGR power cycle can also be utilized for the desalination of seawater for producing potable water. Desalination is an energy intensive process, so use of waste heat from HTGR certainly makes desalination process more affordable to create fresh water resources. So design of the coupling system, as per the safety design requirement of nuclear desalination plant, of desalination plant with HTGR is very crucial. In the first part of this paper, design of the coupling system between hybrid Multi Effect Desalination-Reverse Osmosis (MED-RO) nuclear desalination plant and HTGR to utilize the waste heat in HTGR are discussed. In the next part deterministic safety analysis of the designed coupling system of are presented in detail. It was found that all the coupling system meets the acceptance criteria for all the Postulated Initiating Events (PIE's) limited to DBA. (author)

  18. Dependability analysis of a safety critical system the LHC beam dumping system at CERN

    CERN Document Server

    Filippini, R

    2006-01-01

    This thesis presents the dependability study of the Beam Dumping System of the Large Hadron Collider (LHC), the high energy particle accelerator to be commissioned at CERN in summer 2007. There are two identical, independent LHC Beam Dumping Systems (LBDS), one per LHC beam, each consisting of a series of magnets that extract the particle beam from the LHC ring into the extraction line leading to the absorbing block. The consequences of a failure within the LBDS can be very severe. This risk is reduced by applying redundancy to the design of the most critical components and on-line surveillance that, in case of a detected failure, issues a safe operation abort, called false beam dump. The system has been studied applying Failure Modes Effects and Criticality Analysis (FMECA) and reliability prediction. The system failure processes have been represented with a state transition diagram, governed by a Markov regenerative stochastic process, and analysed for different operational scenarios for one year of operati...

  19. Safety margins in deterministic safety analysis

    International Nuclear Information System (INIS)

    Viktorov, A.

    2011-01-01

    The concept of safety margins has acquired certain prominence in the attempts to demonstrate quantitatively the level of the nuclear power plant safety by means of deterministic analysis, especially when considering impacts from plant ageing and discovery issues. A number of international or industry publications exist that discuss various applications and interpretations of safety margins. The objective of this presentation is to bring together and examine in some detail, from the regulatory point of view, the safety margins that relate to deterministic safety analysis. In this paper, definitions of various safety margins are presented and discussed along with the regulatory expectations for them. Interrelationships of analysis input and output parameters with corresponding limits are explored. It is shown that the overall safety margin is composed of several components each having different origins and potential uses; in particular, margins associated with analysis output parameters are contrasted with margins linked to the analysis input. While these are separate, it is possible to influence output margins through the analysis input, and analysis method. Preserving safety margins is tantamount to maintaining safety. At the same time, efficiency of operation requires optimization of safety margins taking into account various technical and regulatory considerations. For this, basic definitions and rules for safety margins must be first established. (author)

  20. Evaluation of Advanced Thermohydraulic System Codes for Design and Safety Analysis of Integral Type Reactors

    International Nuclear Information System (INIS)

    2014-02-01

    The integral pressurized water reactor (PWR) concept, which incorporates the nuclear steam supply systems within the reactor vessel, is one of the innovative reactor types with high potential for near term deployment. An International Collaborative Standard Problem (ICSP) on Integral PWR Design, Natural Circulation Flow Stability and Thermohydraulic Coupling of Primary System and Containment during Accidents was established in 2010. Oregon State University, which made available the use of its experimental facility built to demonstrate the feasibility of the Multi-application Small Light Water Reactor (MASLWR) design, and sixteen institutes from seven Member States participated in this ICSP. The objective of the ICSP is to assess computer codes for reactor system design and safety analysis. This objective is achieved through the production of experimental data and computer code simulation of experiments. A loss of feedwater transient with subsequent automatic depressurization system blowdown and long term cooling was selected as the reference event since many different modes of natural circulation phenomena, including the coupling of primary system, high pressure containment and cooling pool are expected to occur during this transient. The power maneuvering transient is also tested to examine the stability of natural circulation during the single and two phase conditions. The ICSP was conducted in three phases: pre-test (with designed initial and boundary conditions established before the experiment was conducted), blind (with real initial and boundary conditions after the experiment was conducted) and open simulation (after the observation of real experimental data). Most advanced thermohydraulic system analysis codes such as TRACE, RELAPS and MARS have been assessed against experiments conducted at the MASLWR test facility. The ICSP has provided all participants with the opportunity to evaluate the strengths and weaknesses of their system codes in the transient

  1. Safety system status monitoring

    International Nuclear Information System (INIS)

    Lewis, J.R.; Morgenstern, M.H.; Rideout, T.H.; Cowley, P.J.

    1984-03-01

    The Pacific Northwest Laboratory has studied the safety aspects of monitoring the preoperational status of safety systems in nuclear power plants. The goals of the study were to assess for the NRC the effectiveness of current monitoring systems and procedures, to develop near-term guidelines for reducing human errors associated with monitoring safety system status, and to recommend a regulatory position on this issue. A review of safety system status monitoring practices indicated that current systems and procedures do not adequately aid control room operators in monitoring safety system status. This is true even of some systems and procedures installed to meet existing regulatory guidelines (Regulatory Guide 1.47). In consequence, this report suggests acceptance criteria for meeting the functional requirements of an adequate system for monitoring safety system status. Also suggested are near-term guidelines that could reduce the likelihood of human errors in specific, high-priority status monitoring tasks. It is recommended that (1) Regulatory Guide 1.47 be revised to address these acceptance criteria, and (2) the revised Regulatory Guide 1.47 be applied to all plants, including those built since the issuance of the original Regulatory Guide

  2. Safety system status monitoring

    Energy Technology Data Exchange (ETDEWEB)

    Lewis, J.R.; Morgenstern, M.H.; Rideout, T.H.; Cowley, P.J.

    1984-03-01

    The Pacific Northwest Laboratory has studied the safety aspects of monitoring the preoperational status of safety systems in nuclear power plants. The goals of the study were to assess for the NRC the effectiveness of current monitoring systems and procedures, to develop near-term guidelines for reducing human errors associated with monitoring safety system status, and to recommend a regulatory position on this issue. A review of safety system status monitoring practices indicated that current systems and procedures do not adequately aid control room operators in monitoring safety system status. This is true even of some systems and procedures installed to meet existing regulatory guidelines (Regulatory Guide 1.47). In consequence, this report suggests acceptance criteria for meeting the functional requirements of an adequate system for monitoring safety system status. Also suggested are near-term guidelines that could reduce the likelihood of human errors in specific, high-priority status monitoring tasks. It is recommended that (1) Regulatory Guide 1.47 be revised to address these acceptance criteria, and (2) the revised Regulatory Guide 1.47 be applied to all plants, including those built since the issuance of the original Regulatory Guide.

  3. Probabilistic safety analysis for control rod drive system of ET-RR-1

    International Nuclear Information System (INIS)

    Nasr, M.; Nasser, O.

    1988-01-01

    The International Atomic Energy Agency (IAEA) co-ordinated a Research programme on Probabilistic Safety Analysis (PSA) for research reactors; with the participation of several countries. In the framework of this project (Project Int. 9/063) the Egyptian Atomic Energy Authority decided to perform a PSA study on the ET-RR-1 (Egypt Thermal Research Reactor). The study is conducted in collaboration between the nuclear regulatory and safety centre (NRSC) and the reactor department of the nuclear research centre at Inchass. The present work is a part of the PSA study on ET-RR- it is concerning a probabilistic safety analysis of the control rod drive mechanism

  4. Probabilistic safety assessment of Tehran Research Reactor using systems analysis programs for hands-on integrated reliability evaluations

    International Nuclear Information System (INIS)

    Hosseini, M.H.; Nematollahi, M.R.; Sepanloo, K.

    2004-01-01

    Probabilistic safety assessment application is found to be a practical tool for research reactor safety due to intense involvement of human interactions in an experimental facility. In this document the application of the probabilistic safety assessment to the Tehran Research Reactor is presented. The level 1 practicabilities safety assessment application involved: Familiarization with the plant, selection of accident initiators, mitigating functions and system definitions, event tree constructions and quantifications, fault tree constructions and quantification, human reliability, component failure data base development and dependent failure analysis. Each of the steps of the analysis given above is discussed with highlights from the selected results. Quantification of the constructed models is done using systems analysis programs for hands-on integrated reliability evaluations software

  5. Analysis of air safety in the European system of air traffic

    Directory of Open Access Journals (Sweden)

    О.Є. Луппо

    2008-04-01

    Full Text Available  Article describes air traffic safety provision requirements in the Air Traffic Management system of Europe. Consideration of air traffic variation which affecting the air traffic management operations have been reviewed.

  6. A holistic framework of degradation modeling for reliability analysis and maintenance optimization of nuclear safety systems

    International Nuclear Information System (INIS)

    Lin, Yanhui

    2016-01-01

    Components of nuclear safety systems are in general highly reliable, which leads to a difficulty in modeling their degradation and failure behaviors due to the limited amount of data available. Besides, the complexity of such modeling task is increased by the fact that these systems are often subject to multiple competing degradation processes and that these can be dependent under certain circumstances, and influenced by a number of external factors (e.g. temperature, stress, mechanical shocks, etc.). In this complicated problem setting, this PhD work aims to develop a holistic framework of models and computational methods for the reliability-based analysis and maintenance optimization of nuclear safety systems taking into account the available knowledge on the systems, degradation and failure behaviors, their dependencies, the external influencing factors and the associated uncertainties.The original scientific contributions of the work are: (1) For single components, we integrate random shocks into multi-state physics models for component reliability analysis, considering general dependencies between the degradation and two types of random shocks. (2) For multi-component systems (with a limited number of components):(a) a piecewise-deterministic Markov process modeling framework is developed to treat degradation dependency in a system whose degradation processes are modeled by physics-based models and multi-state models; (b) epistemic uncertainty due to incomplete or imprecise knowledge is considered and a finite-volume scheme is extended to assess the (fuzzy) system reliability; (c) the mean absolute deviation importance measures are extended for components with multiple dependent competing degradation processes and subject to maintenance; (d) the optimal maintenance policy considering epistemic uncertainty and degradation dependency is derived by combining finite-volume scheme, differential evolution and non-dominated sorting differential evolution; (e) the

  7. CANDU safety analysis system establishment; development of trip coverage and multi-dimensional hydrogen analysis methodology

    Energy Technology Data Exchange (ETDEWEB)

    Choi, Jong Ho; Ohn, M. Y.; Cho, C. H. [KOPEC, Taejon (Korea)

    2002-03-01

    The trip coverage analysis model requires the geometry network for primary and secondary circuit as well as the plant control system to simulate all the possible plant operating conditions throughout the plant life. The model was validated for the power maneuvering and the Wolsong 4 commissioning test. The trip coverage map was produced for the large break loss of coolant accident and the complete loss of class IV power event. The reliable multi-dimensional hydrogen analysis requires the high capability for thermal hydraulic modelling. To acquire such a basic capability and verify the applicability of GOTHIC code, the assessment of heat transfer model, hydrogen mixing and combustion model was performed. Also, the assessment methodology for flame acceleration and deflagration-to-detonation transition is established. 22 refs., 120 figs., 31 tabs. (Author)

  8. Reactor safety systems

    International Nuclear Information System (INIS)

    Kafka, P.

    1975-01-01

    The spectrum of possible accidents may become characterized by the 'maximum credible accident', which will/will not happen. Similary, the performance of safety systems in a multitude of situations is sometimes simplified to 'the emergency system will/will not work' or even 'reactors are/ are not safe'. In assessing safety, one must avoid this fallacy of reducing a complicated situation to the simple black-and-white picture of yes/no. Similarly, there is a natural tendency continually to improve the safety of a system to assure that it is 'safe enough'. Any system can be made safer and there is usually some additional cost. It is important to balance the increased safety against the increased costs. (orig.) [de

  9. Analysis of Driving Safety Criteria Based on National Regulations for the Suspension Systems of NGVs

    Directory of Open Access Journals (Sweden)

    Ronald Mauricio Martinod

    2015-01-01

    Full Text Available The work analyses the technical evaluation process of the suspension system for vehicles that have been adapted to natural-gas-fuelled engines from power light-duty gasoline, and diesel vehicles; this evaluation is done through a mechanical review established by national regulations. The development of this analysis is focused on establishing the relationship between the natural-gas-fuelled equipment and the dynamic effect caused by the extra-weight, according to two measuring criteria that determine the safety and driving comfort, these are: (i tire-road adhesion index; and (ii tire excitation phase angle. The paper also proposes new elements that can be added to the current national regulations and that are currently applied to assess the suspension of natural gas vehicles, recorded using a test standard benchmark for the evaluation of the suspension.

  10. Comparative analysis of different configurations of PLC-based safety systems from reliability point of view

    Science.gov (United States)

    Tapia, Moiez A.

    1993-01-01

    The study of a comparative analysis of distinct multiplex and fault-tolerant configurations for a PLC-based safety system from a reliability point of view is presented. It considers simplex, duplex and fault-tolerant triple redundancy configurations. The standby unit in case of a duplex configuration has a failure rate which is k times the failure rate of the standby unit, the value of k varying from 0 to 1. For distinct values of MTTR and MTTF of the main unit, MTBF and availability for these configurations are calculated. The effect of duplexing only the PLC module or only the sensors and the actuators module, on the MTBF of the configuration, is also presented. The results are summarized and merits and demerits of various configurations under distinct environments are discussed.

  11. Analysis and recommendations for a reliable programming of software based safety systems

    International Nuclear Information System (INIS)

    Nunez McLeod, J.; Nunez McLeod, J.E.; Rivera, S.S.

    1997-01-01

    The present paper summarizes the results of several studies performed for the development of high software on i486 microprocessors, towards its utilization for control and safety systems for nuclear power plants. The work is based on software programmed in C language. Several recommendations oriented to high reliability software are analyzed, relating the requirements on high level language to its influence on assembler level. Several metrics are implemented, that allow for the quantification of the results achieved. New metrics were developed and other were adapted, in order to obtain more efficient indexes for the software description. Such metrics are helpful to visualize the adaptation of the software under development to the quality rules under use. A specific program developed to assist the reliability analyst on this quantification is also present in the paper. It performs the analysis of an executable program written in C language, disassembling it and evaluating its inter al structures. (author)

  12. Application of the methodology of safety probabilistic analysis to the modelling the emergency feedwater system of Juragua nuclear power plant

    International Nuclear Information System (INIS)

    Troncoso, M.; Oliva, G.

    1993-01-01

    The application of the methodology developed in the framework of the national plan of safety probabilistic analysis (APS) to the emergency feed water system for the failures of small LOCAS and external electrical supply loss in the nuclear power plant is illustrated in this work. The facilities created by the ARCON code to model the systems and its documentation are also expounded

  13. Survey and analysis of radiation safety management systems at medical institutions. Initial report. Radiation protection supervisor, radiation safety organization, and education and training

    International Nuclear Information System (INIS)

    Ohba, Hisateru; Ogasawara, Katsuhiko; Aburano, Tamio

    2005-01-01

    In this study, a questionnaire survey was carried out to determine the actual situation of radiation safety management systems in Japanese medical institutions with nuclear medicine facilities. The questionnaire consisted of questions concerning the Radiation Protection Supervisor license, safety management organizations, and problems related to education and training in safety management. Analysis was conducted according to region, type of establishment, and number of beds. The overall response rate was 60%, and no significant difference in response rate was found among regions. Medical institutions that performed nuclear medicine practices without a radiologist participating accounted for 10% of the total. Medical institutions where nurses gave patients intravenous injections of radiopharmaceuticals as part of the nuclear medicine practices accounted for 28% of the total. Of these medical institutions, 59% provided education and training in safety management for nurses. The rate of acquisition of Radiation Protection Supervisor licenses was approximately 70% for radiological technologists and approximately 20% for physicians (regional difference, p=0.02). The rate of medical institutions with safety management organizations was 71% of the total. Among the medical institutions (n=208) without safety management organizations, approximately 56% had 300 beds or fewer. In addition, it became clear that 35% of quasi-public organizations and 44% of private organizations did not provide education and training in safety management (p<0.001, according to establishment). (author)

  14. Analysis of dynamic stability and safety of the reactor system by reactor simulator

    International Nuclear Information System (INIS)

    Raisic, N.

    1963-11-01

    This document defines the approximations done for establishing a mathematical model of a reactor. Since the model should be used for safety analysis, it was important to choose a mathematical model less stable than the reactor itself. The analysis was performed on the analog computer RAS. Results obtained and conclusions concerned with three possible reactor accidents are presented [sr

  15. Issues regarding Risk Effect Analysis of Digitalized Safety Systems and Main Risk Contributors

    International Nuclear Information System (INIS)

    Kang, Hyun Gook; Jang, Seung-Cheol

    2008-01-01

    Risk factors of safety-critical digital systems affect overall plant risk. In order to assess this risk effect, a risk model of a digitalized safety system is required. This article aims to provide an overview of the issues when developing a risk model and demonstrate their effect on plant risk quantitatively. Research activities in Korea for addressing these various issues, such as the software failure probability and the fault coverage of self monitoring mechanism are also described. The main risk contributors related to the digitalized safety system were determined in a quantitative manner. Reactor protection system and engineered safety feature component control system designed as part of the Korean Nuclear I and C System project are used as example systems. Fault-tree models were developed to assess the failure probability of a system function which is designed to generate an automated signal for actuating both of the reactor trip and the complicated accident-mitigation actions. The developed fault trees were combined with a plant risk model to evaluate the effect of a digitalized system's failure on the plant risk. (authors)

  16. Validation study on reliability analysis of main safety system in Nuclear Power Plant

    Energy Technology Data Exchange (ETDEWEB)

    Cho, Nam Jin; Cho, Chang Keun; Kim, Yong Hui; Kim, Tae Hyeong; Hong, Seo Kee; Park, Keon Woo; Park, Chang Jea [Korea Advanced Institute of Science and Technology, Taejon (Korea, Republic of); Cheong, Woo Sik [Institute for Advanced Engineering, Yongin (Korea, Republic of); Park, Moon Kyu [KEPRI, Taejon (Korea, Republic of)

    1993-12-15

    The scope and contents of this validation study are to review the design changes of the four main safety systems in Wolsong 2/3/4 Nuclear Power Plants, to review the consideration of the above design changes in the AECL reports, the structure of fault trees, and the data base used in the quantification of the fault trees, to quantify the unavailabilities of main safety systems and check them if they meet the requirements, and to recommend desirable design changes in the emergency core cooling system to reduce the unavailability.

  17. Subseabed disposal safety analysis

    International Nuclear Information System (INIS)

    Koplick, C.M.; Kabele, T.J.

    1982-01-01

    This report summarizes the status of work performed by Analytic Sciences Corporation (TASC) in FY'81 on subseabed disposal safety analysis. Safety analysis for subseabed disposal is divided into two phases: pre-emplacement which includes all transportation, handling, and emplacement activities; and long-term (post-emplacement), which is concerned with the potential hazard after waste is safely emplaced. Details of TASC work in these two areas are provided in two technical reports. The work to date, while preliminary, supports the technical and environmental feasibility of subseabed disposal of HLW

  18. Reactor Safety Assessment System

    International Nuclear Information System (INIS)

    Sebo, D.E.; Bray, M.A.; King, M.A.

    1987-01-01

    The Reactor Safety Assessment System (RSAS) is an expert system under development for the United States Nuclear Regulatory Commission (USNRC). RSAS is designed for use at the USNRC Operations Center in the event of a serious incident at a licensed nuclear power plant. RSAS is a situation assessment expert system which uses plant parametric data to generate conclusions for use by the NRC Reactor Safety Team. RSAS uses multiple rule bases and plant specific setpoint files to be applicable to all licensed nuclear power plants in the United States. RSAS currently covers several generic reactor categories and multiple plants within each category

  19. Reactor safety assessment system

    International Nuclear Information System (INIS)

    Sebo, D.E.; Bray, M.A.; King, M.A.

    1987-01-01

    The Reactor Safety Assessment System (RSAS) is an expert system under development for the United States Nuclear Regulatory Commission (USNRC). RSA is designed for use at the USNRC Operations Center in the event of a serious incident at a licensed nuclear power plant. RSAS is a situation assessment expert system which uses plant parametric data to generate conclusions for use by the NRC Reactor Safety Team. RSAS uses multiple rule bases and plant specific setpoint files to be applicable to all licensed nuclear power plants in the United States. RSAS currently covers several generic reactor categories and multiple plants within each category

  20. Safety Information System Guide

    International Nuclear Information System (INIS)

    Bullock, M.G.

    1977-03-01

    This Guide provides guidelines for the design and evaluation of a working safety information system. For the relatively few safety professionals who have already adopted computer-based programs, this Guide may aid them in the evaluation of their present system. To those who intend to develop an information system, it will, hopefully, inspire new thinking and encourage steps towards systems safety management. For the line manager who is working where the action is, this Guide may provide insight on the importance of accident facts as a tool for moving ideas up the communication ladder where they will be heard and acted upon; where what he has to say will influence beneficial changes among those who plan and control his operations. In the design of a safety information system, it is suggested that the safety manager make friends with a computer expert or someone on the management team who has some feeling for, and understanding of, the art of information storage and retrieval as a new and better means for communication

  1. Programmable electronic safety systems

    International Nuclear Information System (INIS)

    Parry, R.R.

    1993-01-01

    Traditionally safety systems intended for protecting personnel from electrical and radiation hazards at particle accelerator laboratories have made extensive use of electromechanical relays. These systems have the advantage of high reliability and allow the designer to easily implement fail-safe circuits. Relay based systems are also typically simple to design, implement, and test. As systems, such as those presently under development at the Superconducting Super Collider Laboratory (SSCL), increase in size, and the number of monitored points escalates, relay based systems become cumbersome and inadequate. The move toward Programmable Electronic Safety Systems is becoming more widespread and accepted. In developing these systems there are numerous precautions the designer must be concerned with. Designing fail-safe electronic systems with predictable failure states is difficult at best. Redundancy and self-testing are prime examples of features that should be implemented to circumvent and/or detect failures. Programmable systems also require software which is yet another point of failure and a matter of great concern. Therefore the designer must be concerned with both hardware and software failures and build in the means to assure safe operation or shutdown during failures. This paper describes features that should be considered in developing safety systems and describes a system recently installed at the Accelerator Systems String Test (ASST) facility of the SSCL

  2. Programmable Electronic Safety Systems

    International Nuclear Information System (INIS)

    Parry, R.

    1993-05-01

    Traditionally safety systems intended for protecting personnel from electrical and radiation hazards at particle accelerator laboratories have made extensive use of electromechanical relays. These systems have the advantage of high reliability and allow the designer to easily implement failsafe circuits. Relay based systems are also typically simple to design, implement, and test. As systems, such as those presently under development at the Superconducting Super Collider Laboratory (SSCL), increase in size, and the number of monitored points escalates, relay based systems become cumbersome and inadequate. The move toward Programmable Electronic Safety Systems is becoming more widespread and accepted. In developing these systems there are numerous precautions the designer must be concerned with. Designing fail-safe electronic systems with predictable failure states is difficult at best. Redundancy and self-testing are prime examples of features that should be implemented to circumvent and/or detect failures. Programmable systems also require software which is yet another point of failure and a matter of great concern. Therefore the designer must be concerned with both hardware and software failures and build in the means to assure safe operation or shutdown during failures. This paper describes features that should be considered in developing safety systems and describes a system recently installed at the Accelerator Systems String Test (ASST) facility of the SSCL

  3. The SAS4A/SASSYS-1 Safety Analysis Code System, Version 5

    Energy Technology Data Exchange (ETDEWEB)

    Fanning, T. H. [Argonne National Lab. (ANL), Argonne, IL (United States); Brunett, A. J. [Argonne National Lab. (ANL), Argonne, IL (United States); Sumner, T. [Argonne National Lab. (ANL), Argonne, IL (United States)

    2017-01-01

    The SAS4A/SASSYS-1 computer code is developed by Argonne National Laboratory for thermal, hydraulic, and neutronic analysis of power and flow transients in liquidmetal- cooled nuclear reactors (LMRs). SAS4A was developed to analyze severe core disruption accidents with coolant boiling and fuel melting and relocation, initiated by a very low probability coincidence of an accident precursor and failure of one or more safety systems. SASSYS-1, originally developed to address loss-of-decay-heat-removal accidents, has evolved into a tool for margin assessment in design basis accident (DBA) analysis and for consequence assessment in beyond-design-basis accident (BDBA) analysis. SAS4A contains detailed, mechanistic models of transient thermal, hydraulic, neutronic, and mechanical phenomena to describe the response of the reactor core, its coolant, fuel elements, and structural members to accident conditions. The core channel models in SAS4A provide the capability to analyze the initial phase of core disruptive accidents, through coolant heat-up and boiling, fuel element failure, and fuel melting and relocation. Originally developed to analyze oxide fuel clad with stainless steel, the models in SAS4A have been extended and specialized to metallic fuel with advanced alloy cladding. SASSYS-1 provides the capability to perform a detailed thermal/hydraulic simulation of the primary and secondary sodium coolant circuits and the balance-ofplant steam/water circuit. These sodium and steam circuit models include component models for heat exchangers, pumps, valves, turbines, and condensers, and thermal/hydraulic models of pipes and plena. SASSYS-1 also contains a plant protection and control system modeling capability, which provides digital representations of reactor, pump, and valve controllers and their response to input signal changes.

  4. Three suggestions on the definition of terms for the safety and reliability analysis of digital systems

    International Nuclear Information System (INIS)

    Kim, Man Cheol; Smidts, Carol S.

    2015-01-01

    As digital instrumentation and control systems are being progressively introduced into nuclear power plants, a growing number of related technical issues are coming to light needing to be resolved. As a result, an understanding of relevant terms and basic concepts becomes increasingly important. Under the framework of the OECD/NEA WGRISK DIGREL Task Group, the authors were involved in reviewing definitions of terms forming the supporting vocabulary for addressing issues related to the safety and reliability analysis of digital instrumentation and control (SRA of DI and C). These definitions were extracted from various standards regulating the disciplines that form the technical and scientific basis of SRA DI and C. The authors discovered that different definitions are provided by different standards within a common discipline and used differently across various disciplines. This paper raises the concern that a common understanding of terms and basic concepts has not yet been established to address the very specific technical issues facing SRA DI and C. Based on the lessons learned from the review of the definitions of interest and the analysis of dependency relationships existing between these definitions, this paper establishes a set of recommendations for the development of a consistent terminology for SRA DI and C. - Highlights: ●We reviewed definitions of terms used in reliability analysis of digital systems. ●Different definitions are provided by different standards within a common discipline. ●Acyclic and cyclic structures of dependency in defining terms are compared. ●Three recommendations for the development of a consistent terminology provided

  5. Status and topics of thermal-hydraulic analysis for next-generation LWRs with passive safety systems

    International Nuclear Information System (INIS)

    Aritomi, Masanori; Ohnuki, Akira; Arai, Kenji; Kikuta, Michitaka; Yonomoto, Taisuke; Araya, Fumimasa; Akimoto, Hajime

    1999-01-01

    For increasing of electric power demand and reducing of carbon dioxide exhaust in the 21st century, studies of the next-generation light water reactor (LWR) with passive safety systems are developing in the world: AP-600 (by Westing House Co.); SBWR (by General Electric Co.); SWR1000 (by Siemens Co.); NP21 (by Mitsubishi Heavy Industry Co., et al.); JPSR (by JAERI). The passive equipment using natural circulation and natural convection are installed in the passive safety system, instead of active safety equipment, such as pumps, etc. It remains still as a important issue, however, to verify the reliability on the functions of the passive equipment, since that the driving forces of the passive equipment are small at comparison with the active safety equipment. The various subjects of thermal-hydraulic analysis for the next-generation light water reactors, such as temperature stratification in the passive safety systems, vapor condensation in the mixture of non-condensable gases and the interactions of the passive safety system with the primary cooling system, are illustrated and discussed in the paper. (M. Suetake)

  6. Computer aided safety analysis

    International Nuclear Information System (INIS)

    1988-05-01

    The document reproduces 20 selected papers from the 38 papers presented at the Technical Committee/Workshop on Computer Aided Safety Analysis organized by the IAEA in co-operation with the Institute of Atomic Energy in Otwock-Swierk, Poland on 25-29 May 1987. A separate abstract was prepared for each of these 20 technical papers. Refs, figs and tabs

  7. Who is in control of road safety? A STAMP control structure analysis of the road transport system in Queensland, Australia.

    Science.gov (United States)

    Salmon, Paul M; Read, Gemma J M; Stevens, Nicholas J

    2016-11-01

    Despite significant progress, road trauma continues to represent a global safety issue. In Queensland (Qld), Australia, there is currently a focus on preventing the 'fatal five' behaviours underpinning road trauma (drug and drink driving, distraction, seat belt wearing, speeding, and fatigue), along with an emphasis on a shared responsibility for road safety that spans road users, vehicle manufacturers, designers, policy makers etc. The aim of this article is to clarify who shares the responsibility for road safety in Qld and to determine what control measures are enacted to prevent the fatal five behaviours. This is achieved through the presentation of a control structure model that depicts the actors and organisations within the Qld road transport system along with the control and feedback relationships that exist between them. Validated through a Delphi study, the model shows a diverse set of actors and organisations who share the responsibility for road safety that goes beyond those discussed in road safety policies and strategies. The analysis also shows that, compared to other safety critical domains, there are less formal control structures in road transport and that opportunities exist to add new controls and strengthen existing ones. Relationships that influence rather than control are also prominent. Finally, when compared to other safety critical domains, the strength of road safety controls is brought into question. Copyright © 2016 Elsevier Ltd. All rights reserved.

  8. Program system RALLY - for probabilistic safety analysis of large technical systems

    International Nuclear Information System (INIS)

    Gueldner, W.; Polke, H.; Spindler, H.; Zipf, G.

    1982-03-01

    This report describes the program system RALLY to compute the reliability of large and intermeshed technical systems. In addition to a short explanation of the different programs, the possible applications of the program system RALLY are demonstrated. Finally, the most important studies carried out so far on RALLY are discussed. (orig.) [de

  9. Enhancement of safety analysis reliability for a CANDU-6 reactor using RELAP-CANDU/SCAN coupled code system

    International Nuclear Information System (INIS)

    Kim, Man Woong; Choi, Yong Seog; Sin, Chul; Kim, Hyun Koon; Kim, Hho Jung; Hwang, Su Hyun; Hong, In Seob; Kim, Chang Hyo

    2005-01-01

    In LOCA analysis of the CANDU reactor, the system thermal-hydraulic code, RELAP-CANDU, alone cannot predict the transient behavior accurately. Therefore, the best estimate neutronics and system thermal-hydraulic coupled code system is necessary to describe the transient behavior with higher accuracy and reliability. To perform on-line calculation of safety analysis for CANDU reactor, a coupled thermal hydraulics-neutronics code system was developed in such a way that the best-estimate thermal-hydraulic system code for CANDU reactor, RELAP-CANDU, is coupled with the full three-dimensional reactor core kinetic code

  10. Introduction of the system of hazard analysis critical control point to ensure the safety of irradiated food

    International Nuclear Information System (INIS)

    Sajet, A.S.

    2014-01-01

    Hazard Analysis Critical Control Point (HACCP) is a preventive system for food safety. It identifies safety risks faced by food. Identified points are controlled ensuring product safety. Because of presence of many of the pathogenic microorganisms and parasites in food which caused cases of food poisoning and many diseases transmitted through food, the current methods of food production could not prevent food contamination or prevent the growth of these pathogens completely because of being a part of the normal flora in the environment. Irradiation technology helped to control diseases transmitted through food, caused by pathological microorganisms and parasites present in food. The application of a system based on risk analysis as a means of risk management in food chain, demonstrated the importance of food irradiation. (author)

  11. Preliminary systems-interaction results from the Digraph Matrix Analysis of the Watts Bar Nuclear Power Plant safety-injection systems

    International Nuclear Information System (INIS)

    Sacks, I.J.; Ashmore, B.C.; Champney, J.M.; Alesso, H.P.

    1983-06-01

    This report provides preliminary results generated by a Digraph Matrix Analysis (DMA) for a Systems Interaction analysis performed on the Safety Injection System of the Tennessee Valley Authority Watts Bar Nuclear Power Plant. An overview of DMA is provided along with a brief description of the computer codes used in DMA

  12. A Case Study of Dynamic Response Analysis and Safety Assessment for a Suspended Monorail System.

    Science.gov (United States)

    Bao, Yulong; Li, Yongle; Ding, Jiajie

    2016-11-10

    A suspended monorail transit system is a category of urban rail transit, which is effective in alleviating traffic pressure and injury prevention. Meanwhile, with the advantages of low cost and short construction time, suspended monorail transit systems show vast potential for future development. However, the suspended monorail has not been systematically studied in China, and there is a lack of relevant knowledge and analytical methods. To ensure the health and reliability of a suspended monorail transit system, the driving safety of vehicles and structure dynamic behaviors when vehicles are running on the bridge should be analyzed and evaluated. Based on the method of vehicle-bridge coupling vibration theory, the finite element method (FEM) software ANSYS and multi-body dynamics software SIMPACK are adopted respectively to establish the finite element model for bridge and the multi-body vehicle. A co-simulation method is employed to investigate the vehicle-bridge coupling vibration for the transit system. The traffic operation factors, including train formation, track irregularity and tire stiffness, are incorporated into the models separately to analyze the bridge and vehicle responses. The results show that the coupling of dynamic effects of the suspended monorail system between vehicle and bridge are significant in the case studied, and it is strongly suggested to take necessary measures for vibration suppression. The simulation of track irregularity is a critical factor for its vibration safety, and the track irregularity of A-level road roughness negatively influences the system vibration safety.

  13. A Case Study of Dynamic Response Analysis and Safety Assessment for a Suspended Monorail System

    Directory of Open Access Journals (Sweden)

    Yulong Bao

    2016-11-01

    Full Text Available A suspended monorail transit system is a category of urban rail transit, which is effective in alleviating traffic pressure and injury prevention. Meanwhile, with the advantages of low cost and short construction time, suspended monorail transit systems show vast potential for future development. However, the suspended monorail has not been systematically studied in China, and there is a lack of relevant knowledge and analytical methods. To ensure the health and reliability of a suspended monorail transit system, the driving safety of vehicles and structure dynamic behaviors when vehicles are running on the bridge should be analyzed and evaluated. Based on the method of vehicle-bridge coupling vibration theory, the finite element method (FEM software ANSYS and multi-body dynamics software SIMPACK are adopted respectively to establish the finite element model for bridge and the multi-body vehicle. A co-simulation method is employed to investigate the vehicle-bridge coupling vibration for the transit system. The traffic operation factors, including train formation, track irregularity and tire stiffness, are incorporated into the models separately to analyze the bridge and vehicle responses. The results show that the coupling of dynamic effects of the suspended monorail system between vehicle and bridge are significant in the case studied, and it is strongly suggested to take necessary measures for vibration suppression. The simulation of track irregularity is a critical factor for its vibration safety, and the track irregularity of A-level road roughness negatively influences the system vibration safety.

  14. Safety analysis for research reactors

    International Nuclear Information System (INIS)

    2008-01-01

    The aim of safety analysis for research reactors is to establish and confirm the design basis for items important to safety using appropriate analytical tools. The design, manufacture, construction and commissioning should be integrated with the safety analysis to ensure that the design intent has been incorporated into the as-built reactor. Safety analysis assesses the performance of the reactor against a broad range of operating conditions, postulated initiating events and other circumstances, in order to obtain a complete understanding of how the reactor is expected to perform in these situations. Safety analysis demonstrates that the reactor can be kept within the safety operating regimes established by the designer and approved by the regulatory body. This analysis can also be used as appropriate in the development of operating procedures, periodic testing and inspection programmes, proposals for modifications and experiments and emergency planning. The IAEA Safety Requirements publication on the Safety of Research Reactors states that the scope of safety analysis is required to include analysis of event sequences and evaluation of the consequences of the postulated initiating events and comparison of the results of the analysis with radiological acceptance criteria and design limits. This Safety Report elaborates on the requirements established in IAEA Safety Standards Series No. NS-R-4 on the Safety of Research Reactors, and the guidance given in IAEA Safety Series No. 35-G1, Safety Assessment of Research Reactors and Preparation of the Safety Analysis Report, providing detailed discussion and examples of related topics. Guidance is given in this report for carrying out safety analyses of research reactors, based on current international good practices. The report covers all the various steps required for a safety analysis; that is, selection of initiating events and acceptance criteria, rules and conventions, types of safety analysis, selection of

  15. Towards the Development of a Methodology for the Cyber Security Analysis of Safety Related Nuclear Digital I and C Systems

    International Nuclear Information System (INIS)

    Khand, Parvaiz Ahmed; Seong, Poong Hyun

    2007-01-01

    In nuclear power plants the redundant safety related systems are designed to take automatic action to prevent and mitigate accident conditions if the operators and the non-safety systems fail to maintain the plant within normal operating conditions. In case of an event, the failure of these systems has catastrophic consequences. The tendency in the industry over the past 10 years has been to use of commercial of the shelf (COTS) technologies in these systems. COTS software was written with attention to function and performance rather than security. COTS hardware usually designed to fail safe, but security vulnerabilities could be exploited by an attacker to disable the fail safe mechanisms. Moreover, the use of open protocols and operating systems in these technologies make the plants to become vulnerable to a host of cyber attacks. An effective security analysis process is required during all life cycle phases of these systems in order to ensure the security from cyber attacks. We are developing a methodology for the cyber security analysis of safety related nuclear digital I and C Systems. This methodology will cover all phases of development, operation and maintenance processes of software life cycle. In this paper, we will present a security analysis process for the concept stage of software development life cycle

  16. Development of the safety analysis system - SAIS - application to the Kola nuclear power plant

    International Nuclear Information System (INIS)

    Balfanz, H.P.; Fuhrmann, C.; Neumann, L.; Rumpf, J.; Kubintsev, B.; Marakulin, I.; Shevelev, V.; Terekhov, I.

    1995-01-01

    The project was started in July 1991 and finished by the end of 1993. It was aimed at adapting SAIS to WWER-440/W213 plant design and operational procedures, demonstrating the possibilities of SAIS for safety evaluation and examining the system by plant personnel and a PSA team. The project covered -the use of data form as well as fault and event tree methods of SAIS, - a probabilistic assessment of the high pressure injection system in case of a small break loss-of-coolant accident, - a quantification of human error probabilities for operator actions to cool down the primary circuit in case of a small break loss-of-coolant accident when the high pressure injection system has failed and - a comparison of Russian and German operational procedures and safety documents used in the probabilistic analyses of the SAIS-Kola project. As a main result SAIS was found to be an appropriate tool to give assistance to the plant personnel on safety evaluation of the plant within the frame of reconstruction measures and on the establishment of a qualified reliability data collection system at Kola NPP. (orig./HP) [de

  17. Safety implications of control systems

    International Nuclear Information System (INIS)

    Smith, O.L.

    1983-01-01

    The Safety Implications of Control Systems Program has three major activities in support of USI-A47. The first task is a failure mode and effects analysis of all plant systems which may potentially induce control system disturbance that have safety implications. This task has made a preliminary study of overfill events and recommended cases for further analysis on the hybrid simulator. Work continues on overcooling and undercooling. A detailed investigation of electric power network is in progress. LERs are providing guidance on important failure modes that will provide initial conditions for further simulator studies. The simulator taks is generating a detailed model of the control system supported by appropriate neutronics, hydraulics, and thermodynamics submodels of all other principal plant components. The simulator is in the last stages of development. Checkout calculations are in progress to establish model stability, robustness, and qualitative credibility. Verification against benchmark codes and plant data will follow

  18. Safety and security analysis for distributed control system in nuclear power plants

    International Nuclear Information System (INIS)

    Lu Zhigang; Liu Baoxu

    2011-01-01

    The Digital Distributed Control System (DCS) is the core that manages all monitoring and operation tasks in a Nuclear Power Plant (NPP). So, Digital Distributed Control System in Nuclear Power Plant has strict requirements for control and automation device safety and security due to many factors. In this article, factors of safety are analyzed firstly, while placing top priority on reliability, quality of supply and stability have also been carefully considered. In particular, advanced digital and electronic technologies are adopted to maintain sufficient reliability and supervisory capabilities in nuclear power plants. Then, security of networking and information technology have been remarked, several design methodologies considering the security characteristics are suggested. Methods and technologies of this article are being used in testing and evaluation for a real implement of a nuclear power plant in China. (author)

  19. Probabilistic Causal Analysis for System Safety Risk Assessments in Commercial Air Transport

    Science.gov (United States)

    Luxhoj, James T.

    2003-01-01

    Aviation is one of the critical modes of our national transportation system. As such, it is essential that new technologies be continually developed to ensure that a safe mode of transportation becomes even safer in the future. The NASA Aviation Safety Program (AvSP) is managing the development of new technologies and interventions aimed at reducing the fatal aviation accident rate by a factor of 5 by year 2007 and by a factor of 10 by year 2022. A portfolio assessment is currently being conducted to determine the projected impact that the new technologies and/or interventions may have on reducing aviation safety system risk. This paper reports on advanced risk analytics that combine the use of a human error taxonomy, probabilistic Bayesian Belief Networks, and case-based scenarios to assess a relative risk intensity metric. A sample case is used for illustrative purposes.

  20. Systems Thinking Safety Analysis: Nuclear Security Assessment of Physical Protection System in Nuclear Power Plants

    Directory of Open Access Journals (Sweden)

    Tae Ho Woo

    2013-01-01

    Full Text Available The dynamical assessment has been performed in the aspect of the nuclear power plants (NPPs security. The physical protection system (PPS is constructed by the cyber security evaluation tool (CSET for the nuclear security assessment. The systems thinking algorithm is used for the quantifications by the Vensim software package. There is a period of 60 years which is the life time of NPPs' operation. The maximum possibility happens as 3.59 in the 30th year. The minimum value is done as 1.26 in the 55th year. The difference is about 2.85 times. The results of the case with time delay have shown that the maximum possibility of terror or sabotage incident happens as 447.42 in the 58th year and the minimum value happens as 89.77 in the 51st year. The difference is about 4.98 times. Hence, if the sabotage happens, the worst case is that the intruder can attack the target of the nuclear material in about one and a half hours. The general NPPs are modeled in the study and controlled by the systematic procedures.

  1. Development of safety analysis methodology for moderator system failure of CANDU-6 reactor by thermal-hydraulics/physics coupling

    International Nuclear Information System (INIS)

    Kim, Jong Hyun; Jin, Dong Sik; Chang, Soon Heung

    2013-01-01

    Highlights: • Developed new safety analysis methodology of moderator system failures for CANDU-6. • The new methodology used the TH-physics coupling concept. • Thermalhydraulic code is CATHENA, physics code is RFSP-IST. • Moderator system failure ends to the subcriticality through self-shutdown. -- Abstract: The new safety analysis methodology for the CANDU-6 nuclear power plant (NPP) moderator system failure has been developed by using the coupling technology with the thermalhydraulic code, CATHENA and reactor core physics code, RFSP-IST. This sophisticated methodology can replace the legacy methodology using the MODSTBOIL and SMOKIN-G2 in the field of the thermalhydraulics and reactor physics, respectively. The CATHENA thermalhydraulic model of the moderator system can simulate the thermalhydraulic behaviors of all the moderator systems such as the calandria tank, head tank, moderator circulating circuit and cover gas circulating circuit and can also predict the thermalhydraulic property of the moderator such as moderator density, temperature and water level in the calandria tank as the moderator system failures go on. And these calculated moderator thermalhydraulic properties are provided to the 3-dimensional neutron kinetics solution module – CERBRRS of RFSP-IST as inputs, which can predict the change of the reactor power and provide the calculated reactor power to the CATHENA. These coupling calculations are performed at every 2 s time steps, which are equivalent to the slow control of CANDU-6 reactor regulating systems (RRS). The safety analysis results using this coupling methodology reveal that the reactor operation enters into the self-shutdown mode without any engineering safety system and/or human interventions for the postulated moderator system failures of the loss of heat sink and moderator inventory, respectively

  2. Application of safety checklist to the analysis of the IEA-R1 reactor water retreatment system

    International Nuclear Information System (INIS)

    Sauer, Maria Eugenia Lago Jacques; Sara Neto, Antonio Jorge; Lima, Toni Carlos Caboclo de; Ribeiro, Maria Alice Morato

    2005-01-01

    In 1999, the management of the IEA-R1 Research Reactor (pool type - 5 MWth), located at IPEN/CNEN-SP, started the evaluation of the Reactor Pool Water Retreatment System to identify operational aspects, which could compromise the operators safety. The purpose was to identify and propose enhancements to the system which would be installed to substitute for the existing one. This process was conducted through a qualitative study of the system in operation. This study was carried out by a team composed of specialists in reactor operation, systems maintenance and radiological protection, and one safety analyst. The study consisted, basically, in local inspections to verify the physical and operational conditions of each equipment / component as well as aspects related to maintenance activities of the system. The process control and the operator procedures associated with the retreatment of the reactor pool water were also reviewed. The methodology adopted to develop the study was based in process hazard analysis technique named Safety Checklist. This paper presents a summary of this study and the main results obtained. Some operational and safety problems identified, the prevention and/or correction means to avoid them, and the recommendations and suggestions that have been implemented to the new design of the IEA-R1 Reactor Water Retreatment System, whose installation was concluded in 2003, are also presented. (author)

  3. Comparison of medication safety systems in critical access hospitals: Combined analysis of two studies.

    Science.gov (United States)

    Cochran, Gary L; Barrett, Ryan S; Horn, Susan D

    2016-08-01

    The role of pharmacist transcription, onsite pharmacist dispensing, use of automated dispensing cabinets (ADCs), nurse-nurse double checks, or barcode-assisted medication administration (BCMA) in reducing medication error rates in critical access hospitals (CAHs) was evaluated. Investigators used the practice-based evidence methodology to identify predictors of medication errors in 12 Nebraska CAHs. Detailed information about each medication administered was recorded through direct observation. Errors were identified by comparing the observed medication administered with the physician's order. Chi-square analysis and Fisher's exact test were used to measure differences between groups of medication-dispensing procedures. Nurses observed 6497 medications being administered to 1374 patients. The overall error rate was 1.2%. The transcription error rates for orders transcribed by an onsite pharmacist were slightly lower than for orders transcribed by a telepharmacy service (0.10% and 0.33%, respectively). Fewer dispensing errors occurred when medications were dispensed by an onsite pharmacist versus any other method of medication acquisition (0.10% versus 0.44%, p = 0.0085). The rates of dispensing errors for medications that were retrieved from a single-cell ADC (0.19%), a multicell ADC (0.45%), or a drug closet or general supply (0.77%) did not differ significantly. BCMA was associated with a higher proportion of dispensing and administration errors intercepted before reaching the patient (66.7%) compared with either manual double checks (10%) or no BCMA or double check (30.4%) of the medication before administration (p = 0.0167). Onsite pharmacist dispensing and BCMA were associated with fewer medication errors and are important components of a medication safety strategy in CAHs. Copyright © 2016 by the American Society of Health-System Pharmacists, Inc. All rights reserved.

  4. Use of F.M.E.A. for reliability analysis of safety systems in nuclear power plants

    International Nuclear Information System (INIS)

    Barbet, J.F.; Llory, M.; Villemeur, A.

    1982-01-01

    In the framework of the French nuclear power plant program, reliability studies of safety systems have been carried out at the Electricite de France since 1975. The main results of the studies are examined; about the methodological aspects it appears useful to develop an inductive approach such as the Failure Modes and Effects Analysis (F.M.E.A.). The method is described with its advantages and limitations; the possibilities of use of F.M.E.A. to solve specific safety problems are investigated. To conclude, the future trends of research and development in this field at Electricite de France are pointed out [fr

  5. Microbiological performance of Hazard Analysis Critical Control Point (HACCP)-based food safety management systems: A case of Nile perch processing company

    NARCIS (Netherlands)

    Kussaga, J.B.; Luning, P.A.; Tiisekwa, B.P.M.; Jacxsens, L.

    2017-01-01

    This study aimed at giving insight into microbiological safety output of a Hazard Analysis Critical Control Point (HACCP)-based Food Safety Management System (FSMS) of a Nile perch exporting company by using a combined assessment, This study aimed at giving insight into microbiological safety output

  6. 14 CFR 35.15 - Safety analysis.

    Science.gov (United States)

    2010-01-01

    ... 14 Aeronautics and Space 1 2010-01-01 2010-01-01 false Safety analysis. 35.15 Section 35.15... STANDARDS: PROPELLERS Design and Construction § 35.15 Safety analysis. (a)(1) The applicant must analyze the.... This analysis will take into account, if applicable: (i) The propeller system in a typical installation...

  7. Safety of huge systems

    International Nuclear Information System (INIS)

    Kondo, Jiro.

    1995-01-01

    Recently accompanying the development of engineering technology, huge systems tend to be constructed. The disaster countermeasures of huge cities become large problems as the concentration of population into cities is conspicuous. To make the expected value of loss small, the knowledge of reliability engineering is applied. In reliability engineering, even if a part of structures fails, the safety as a whole system must be ensured, therefore, the design having margin is carried out. The degree of margin is called redundancy. However, such design concept makes the structure of a system complex, and as the structure is complex, the possibility of causing human errors becomes high. At the time of huge system design, the concept of fail-safe is effective, but simple design must be kept in mind. The accident in Mihama No. 2 plant of Kansai Electric Power Co. and the accident in Chernobyl nuclear power station, and the accident of Boeing B737 airliner and the fatigue breakdown are described. The importance of safety culture was emphasized as the method of preventing human errors. Man-system interface and management system are discussed. (K.I.)

  8. The PIANC Safety Factor System for Breakwaters

    DEFF Research Database (Denmark)

    Burcharth, H. F.

    2000-01-01

    The paper presents a summary of the recommendations for implementation of safety in breakwater designs given by the PIANC PTC IT Working Group No 12 on Analysis of Rubble Mound Breakwaters with Vertical and Inclined Concrete Walls. The working groups developed for the most important failure modes...... a system of partial safety factors which facilitate design to any target safety level....

  9. Nuclear reactor safety systems

    International Nuclear Information System (INIS)

    Ball, R.M.; Roberts, R.C.

    1980-01-01

    A safety system for shutting down a nuclear reactor under overload conditions is described. The system includes a series of parallel-connected computer memory type look-up tables each of which receives data on a particular reactor parameter and in each of which a precalculated functional value for that parameter is stored indicative of the percentage of maximum reactor load that the parameter contributes. The various functional values corresponding to the actual measured parameters are added together to provide a control signal used to shut down the reactor under overload conditions. (U.K.)

  10. Status and subjects of thermal-hydraulic analysis for next-generation LWRs with passive safety systems

    Energy Technology Data Exchange (ETDEWEB)

    NONE

    1998-03-01

    The present status and subjects on thermal-hydraulic analysis for next-generation light water reactors (LWRs) with passive safety systems were summarized based on survey results and discussion by subcommittee on improvement of reactor thermal-hydraulic analysis codes under nuclear code committee in Japan Atomic Energy Research Institute. This survey was performed to promote the research of improvement of reactor thermal-hydraulic analysis codes in future. In the first part of this report, the status and subjects on system analysis and those on evaluation of passive safety system performance are summarized for various types of reactor proposed before. In the second part, the status and subjects on multidimensional two-phase flow analysis are reviewed, since the multidimensional analysis was recognized as one of most important subjects through the investigation in the first part. Besides, databases for bubbly flow and annular dispersed flow were explored, those are needed to assess and verify each multidimensional analytical method. The contents in this report are the forefront of thermal-hydraulic analysis for LWRs and those include current findings for the development of multidimensional two-phase flow analytical method. Thus, we expect that the contents can offer various useful information against the improvement of reactor thermal-hydraulic analysis codes in future. (author)

  11. FOOD SAFETY CONTROL SYSTEM IN CHINA

    Institute of Scientific and Technical Information of China (English)

    Liu Wei-jun; Wei Yi-min; Han Jun; Luo Dan; Pan Jia-rong

    2007-01-01

    Most countries have expended much effort to develop food safety control systems to ensure safe food supplies within their borders. China, as one of the world's largest food producers and consumers,pays a lot of attention to food safety issues. In recent years, China has taken actions and implemented a series of plans in respect to food safety. Food safety control systems including regulatory, supervisory,and science and technology systems, have begun to be established in China. Using, as a base, an analysis of the current Chinese food safety control system as measured against international standards, this paper discusses the need for China to standardize its food safety control system. We then suggest some policies and measures to improve the Chinese food safety control system.

  12. Safety analysis for the use of new digital safety I and C systems; Sicherheitsanalytik fuer den Einsatz neuer digitaler Sicherheits-Leittechniksysteme

    Energy Technology Data Exchange (ETDEWEB)

    Buehler, Cornelia [TUEV SUED Industrie Service GmbH, Muenchen (Germany). Energie und Technologie

    2012-05-15

    Age-induced replacement or modernization of safety I and C systems by digital equipment technology has been one of the topical subjects in nuclear technology for more than a decade. Digital equipment technology in this case means microcontroller- or microprocessor-based systems which implement I and C functions in software (SW) and, on the other hand, systems with programmed hardware (HW) components, such as Application-specific Integrated Circuits (ASIC), Field Programmable Gate Arrays (FPGA) or Programmable Logic Devices (PLS), which can be developed only by means of sophisticated SW development environments. The switch to digital equipment technology is more than a mere change in equipment technology even though the I and C functions remain almost identical in most cases. The switch not only leads to a different approach in equipment qualification, but also requires new focal points in plant design when it comes to assessing plant design, and needs new or adapted methods of analysis and evaluation. The main reason lies in the greater possibilities of systematic errors caused mainly by software-based development, manufacture and maintenance. New and adapted methods of analysis and evaluation for I and C systems are presented and explained. It is safe to say that safety I and C technology in the highest category of requirements necessitates a very far reaching realignment in design and evaluation as well as the use of new analytical techniques. This meets the claim of an I and C technology fit for use, reliable and comparable to the technology it replaces. (orig.)

  13. Project Alternative Systems Study - PASS. Analysis of performance and long-term safety of repository concepts

    International Nuclear Information System (INIS)

    Birgersson, L.; Skagius, K.; Wiborgh, M.; Widen, H.

    1992-09-01

    This study is part of the Project on Alternative Systems Study, PASS, with the overall aim to perform a technical/economical ranking of alternative repository concepts and canisters for the final storage of spent nuclear fuel. The comparison should in the first stage separately assess technology in construction and operation, long-term performance and safety, and costs. Three of the repository concepts are assumed to be located at a depth of approximately 500 m in the host rock, KBS-3, Very Long Holes (VLH) and Medium Long Holes (MLH). In the KBS-3 concept the canisters are deposited in vertical deposition holes in a system of parallel storage tunnels. In the VLH concept larger canisters are deposited in long horizontal tunnels. The MLH concept, is an evolution of the two other concepts, with KBS-3 type canisters deposited in horizontal tunnels. Smaller canisters are to be deposited in deep bore holes at a depth between 2000 to 4000 m in the Very Deep Holes (VDH) concept. In all concepts the canisters will be surrounded by a bentonite buffer. The aim of the present study is to analyze and compare the performance and long-term safety of the repository concepts. Only a qualitative comparison of the concepts is made as no calculations of radionuclide releases or dose to man have been performed. The ranking of the repository concepts was carried out by comparing the VDH, VLH and MLH concept with the KBS-3 concept. The performance and long-term safety of the repositories located at 500 m level will be based on a multiple barrier system and the predictions for the concepts will involve similar uncertainties. (54 refs.)

  14. The LHC personnel safety system

    International Nuclear Information System (INIS)

    Ninin, P.; Valentini, F.; Ladzinski, T.

    2011-01-01

    Large particle physics installations such as the CERN Large Hadron Collider require specific Personnel Safety Systems (PSS) to protect the personnel against the radiological and industrial hazards. In order to fulfill the French regulation in matter of nuclear installations, the principles of IEC 61508 and IEC 61513 standard are used as a methodology framework to evaluate the criticality of the installation, to design and to implement the PSS.The LHC PSS deals with the implementation of all physical barriers, access controls and interlock devices around the 27 km of underground tunnel, service zones and experimental caverns of the LHC. The system shall guarantee the absence of personnel in the LHC controlled areas during the machine operations and, on the other hand, ensure the automatic accelerator shutdown in case of any safety condition violation, such as an intrusion during beam circulation. The LHC PSS has been conceived as two separate and independent systems: the LHC Access Control System (LACS) and the LHC Access Safety System (LASS). The LACS, using off the shelf technologies, realizes all physical barriers and regulates all accesses to the underground areas by identifying users and checking their authorizations.The LASS has been designed according to the principles of the IEC 61508 and 61513 standards, starting from a risk analysis conducted on the LHC facility equipped with a standard access control system. It consists in a set of safety functions realized by a dedicated fail-safe and redundant hardware guaranteed to be of SIL3 class. The integration of various technologies combining electronics, sensors, video and operational procedures adopted to establish an efficient personnel safety system for the CERN LHC accelerator is presented in this paper. (authors)

  15. System Design and the Safety Basis

    International Nuclear Information System (INIS)

    Ellingson, Darrel

    2008-01-01

    The objective of this paper is to present the Bechtel Jacobs Company, LLC (BJC) Lessons Learned for system design as it relates to safety basis documentation. BJC has had to reconcile incomplete or outdated system description information with current facility safety basis for a number of situations in recent months. This paper has relevance in multiple topical areas including documented safety analysis, decontamination and decommissioning (D and D), safety basis (SB) implementation, safety and design integration, potential inadequacy of the safety analysis (PISA), technical safety requirements (TSR), and unreviewed safety questions. BJC learned that nuclear safety compliance relies on adequate and well documented system design information. A number of PIS As and TSR violations occurred due to inadequate or erroneous system design information. As a corrective action, BJC assessed the occurrences caused by systems design-safety basis interface problems. Safety systems reviewed included the Molten Salt Reactor Experiment (MSRE) Fluorination System, K-1065 fire alarm system, and the K-25 Radiation Criticality Accident Alarm System. The conclusion was that an inadequate knowledge of system design could result in continuous non-compliance issues relating to nuclear safety. This was especially true with older facilities that lacked current as-built drawings coupled with the loss of 'historical knowledge' as personnel retired or moved on in their careers. Walkdown of systems and the updating of drawings are imperative for nuclear safety compliance. System design integration with safety basis has relevance in the Department of Energy (DOE) complex. This paper presents the BJC Lessons Learned in this area. It will be of benefit to DOE contractors that manage and operate an aging population of nuclear facilities

  16. Seismic Safety Margins Research Program (Phase I). Project VII. Systems analysis specification of computational approach

    International Nuclear Information System (INIS)

    Wall, I.B.; Kaul, M.K.; Post, R.I.; Tagart, S.W. Jr.; Vinson, T.J.

    1979-02-01

    An initial specification is presented of a computation approach for a probabilistic risk assessment model for use in the Seismic Safety Margin Research Program. This model encompasses the whole seismic calculational chain from seismic input through soil-structure interaction, transfer functions to the probability of component failure, integration of these failures into a system model and thereby estimate the probability of a release of radioactive material to the environment. It is intended that the primary use of this model will be in sensitivity studies to assess the potential conservatism of different modeling elements in the chain and to provide guidance on priorities for research in seismic design of nuclear power plants

  17. Statistical considerations on safety analysis

    International Nuclear Information System (INIS)

    Pal, L.; Makai, M.

    2004-01-01

    The authors have investigated the statistical methods applied to safety analysis of nuclear reactors and arrived at alarming conclusions: a series of calculations with the generally appreciated safety code ATHLET were carried out to ascertain the stability of the results against input uncertainties in a simple experimental situation. Scrutinizing those calculations, we came to the conclusion that the ATHLET results may exhibit chaotic behavior. A further conclusion is that the technological limits are incorrectly set when the output variables are correlated. Another formerly unnoticed conclusion of the previous ATHLET calculations that certain innocent looking parameters (like wall roughness factor, the number of bubbles per unit volume, the number of droplets per unit volume) can influence considerably such output parameters as water levels. The authors are concerned with the statistical foundation of present day safety analysis practices and can only hope that their own misjudgment will be dispelled. Until then, the authors suggest applying correct statistical methods in safety analysis even if it makes the analysis more expensive. It would be desirable to continue exploring the role of internal parameters (wall roughness factor, steam-water surface in thermal hydraulics codes, homogenization methods in neutronics codes) in system safety codes and to study their effects on the analysis. In the validation and verification process of a code one carries out a series of computations. The input data are not precisely determined because measured data have an error, calculated data are often obtained from a more or less accurate model. Some users of large codes are content with comparing the nominal output obtained from the nominal input, whereas all the possible inputs should be taken into account when judging safety. At the same time, any statement concerning safety must be aleatory, and its merit can be judged only when the probability is known with which the

  18. Preliminary safety analysis methodology for the SMART

    Energy Technology Data Exchange (ETDEWEB)

    Bae, Kyoo Hwan; Chung, Y. J.; Kim, H. C.; Sim, S. K.; Lee, W. J.; Chung, B. D.; Song, J. H. [Korea Atomic Energy Research Institute, Taejeon (Korea)

    2000-03-01

    This technical report was prepared for a preliminary safety analysis methodology of the 330MWt SMART (System-integrated Modular Advanced ReacTor) which has been developed by Korea Atomic Energy Research Institute (KAERI) and funded by the Ministry of Science and Technology (MOST) since July 1996. This preliminary safety analysis methodology has been used to identify an envelope for the safety of the SMART conceptual design. As the SMART design evolves, further validated final safety analysis methodology will be developed. Current licensing safety analysis methodology of the Westinghouse and KSNPP PWRs operating and under development in Korea as well as the Russian licensing safety analysis methodology for the integral reactors have been reviewed and compared to develop the preliminary SMART safety analysis methodology. SMART design characteristics and safety systems have been reviewed against licensing practices of the PWRs operating or KNGR (Korean Next Generation Reactor) under construction in Korea. Detailed safety analysis methodology has been developed for the potential SMART limiting events of main steam line break, main feedwater pipe break, loss of reactor coolant flow, CEA withdrawal, primary to secondary pipe break and the small break loss of coolant accident. SMART preliminary safety analysis methodology will be further developed and validated in parallel with the safety analysis codes as the SMART design further evolves. Validated safety analysis methodology will be submitted to MOST as a Topical Report for a review of the SMART licensing safety analysis methodology. Thus, it is recommended for the nuclear regulatory authority to establish regulatory guides and criteria for the integral reactor. 22 refs., 18 figs., 16 tabs. (Author)

  19. Preclosure Safety Analysis Guide

    International Nuclear Information System (INIS)

    D.D. Orvis

    2003-01-01

    A preclosure safety analysis (PSA) is a required element of the License Application (LA) for the high- level radioactive waste repository at Yucca Mountain. This guide provides analysts and other Yucca Mountain Repository Project (the Project) personnel with standardized methods for developing and documenting the PSA. The definition of the PSA is provided in 10 CFR 63.2, while more specific requirements for the PSA are provided in 10 CFR 63.112, as described in Sections 1.2 and 2. The PSA requirements described in 10 CFR Part 63 were developed as risk-informed performance-based regulations. These requirements must be met for the LA. The PSA addresses the safety of the Geologic Repository Operations Area (GROA) for the preclosure period (the time up to permanent closure) in accordance with the radiological performance objectives of 10 CFR 63.111. Performance objectives for the repository after permanent closure (described in 10 CFR 63.113) are not mentioned in the requirements for the PSA and they are not considered in this guide. The LA will be comprised of two phases: the LA for construction authorization (CA) and the LA amendment to receive and possess (R and P) high-level radioactive waste (HLW). PSA methods must support the safety analyses that will be based on the differing degrees of design detail in the two phases. The methods described herein combine elements of probabilistic risk assessment (PRA) and deterministic analyses that comprise a risk-informed performance-based safety analysis. This revision to the PSA guide was prepared for the following objectives: (1) To correct factual and typographical errors. (2) To provide additional material suggested from reviews by the Project, the U.S. Department of Energy (DOE), and U.S. Nuclear Regulatory Commission (NRC) Staffs. (3) To update material in accordance with approaches and/or strategies adopted by the Project. In addition, a principal objective for the planned revision was to ensure that the methods and

  20. Reliability analysis of microcomputer boards and computer based systems important to safety of nuclear plants

    International Nuclear Information System (INIS)

    Shrikhande, S.V.; Patil, V.K.; Ganesh, G.; Biswas, B.; Patil, R.K.

    2010-01-01

    Computer Based Systems (CBS) are employed in Indian nuclear plants for protection, control and monitoring purpose. For forthcoming CBS, Reactor Control Division has designed and developed a new standardized family of microcomputer boards qualified to stringent requirements of nuclear industry. These boards form the basic building blocks of CBS. Reliability analysis of these boards is being carried out using analysis package based on MIL-STD-217Plus methodology. The estimated failure rate values of these standardized microcomputer boards will be useful for reliability assessment of these systems. The paper presents reliability analysis of microcomputer boards and case study of a CBS system built using these boards. (author)

  1. SEISMIC ANALYSIS FOR PRECLOSURE SAFETY

    Energy Technology Data Exchange (ETDEWEB)

    E.N. Lindner

    2004-12-03

    The purpose of this seismic preclosure safety analysis is to identify the potential seismically-initiated event sequences associated with preclosure operations of the repository at Yucca Mountain and assign appropriate design bases to provide assurance of achieving the performance objectives specified in the Code of Federal Regulations (CFR) 10 CFR Part 63 for radiological consequences. This seismic preclosure safety analysis is performed in support of the License Application for the Yucca Mountain Project. In more detail, this analysis identifies the systems, structures, and components (SSCs) that are subject to seismic design bases. This analysis assigns one of two design basis ground motion (DBGM) levels, DBGM-1 or DBGM-2, to SSCs important to safety (ITS) that are credited in the prevention or mitigation of seismically-initiated event sequences. An application of seismic margins approach is also demonstrated for SSCs assigned to DBGM-2 by showing a high confidence of a low probability of failure at a higher ground acceleration value, termed a beyond-design basis ground motion (BDBGM) level. The objective of this analysis is to meet the performance requirements of 10 CFR 63.111(a) and 10 CFR 63.111(b) for offsite and worker doses. The results of this calculation are used as inputs to the following: (1) A classification analysis of SSCs ITS by identifying potential seismically-initiated failures (loss of safety function) that could lead to undesired consequences; (2) An assignment of either DBGM-1 or DBGM-2 to each SSC ITS credited in the prevention or mitigation of a seismically-initiated event sequence; and (3) A nuclear safety design basis report that will state the seismic design requirements that are credited in this analysis. The present analysis reflects the design information available as of October 2004 and is considered preliminary. The evolving design of the repository will be re-evaluated periodically to ensure that seismic hazards are properly

  2. SEISMIC ANALYSIS FOR PRECLOSURE SAFETY

    International Nuclear Information System (INIS)

    E.N. Lindner

    2004-01-01

    The purpose of this seismic preclosure safety analysis is to identify the potential seismically-initiated event sequences associated with preclosure operations of the repository at Yucca Mountain and assign appropriate design bases to provide assurance of achieving the performance objectives specified in the Code of Federal Regulations (CFR) 10 CFR Part 63 for radiological consequences. This seismic preclosure safety analysis is performed in support of the License Application for the Yucca Mountain Project. In more detail, this analysis identifies the systems, structures, and components (SSCs) that are subject to seismic design bases. This analysis assigns one of two design basis ground motion (DBGM) levels, DBGM-1 or DBGM-2, to SSCs important to safety (ITS) that are credited in the prevention or mitigation of seismically-initiated event sequences. An application of seismic margins approach is also demonstrated for SSCs assigned to DBGM-2 by showing a high confidence of a low probability of failure at a higher ground acceleration value, termed a beyond-design basis ground motion (BDBGM) level. The objective of this analysis is to meet the performance requirements of 10 CFR 63.111(a) and 10 CFR 63.111(b) for offsite and worker doses. The results of this calculation are used as inputs to the following: (1) A classification analysis of SSCs ITS by identifying potential seismically-initiated failures (loss of safety function) that could lead to undesired consequences; (2) An assignment of either DBGM-1 or DBGM-2 to each SSC ITS credited in the prevention or mitigation of a seismically-initiated event sequence; and (3) A nuclear safety design basis report that will state the seismic design requirements that are credited in this analysis. The present analysis reflects the design information available as of October 2004 and is considered preliminary. The evolving design of the repository will be re-evaluated periodically to ensure that seismic hazards are properly

  3. Safety assessment for Generation IV nuclear systems

    International Nuclear Information System (INIS)

    Leahy, T.J.

    2012-01-01

    The Generation IV International Forum (GIF) Risk and Safety Working Group (RSWG) was created to develop an effective approach for the safety of Generation IV advanced nuclear energy systems. Recent RSWG work has focused on the definition of an integrated safety assessment methodology (ISAM) for evaluating the safety of Generation IV systems. ISAM is an integrated 'tool-kit' consisting of 5 analytical techniques that are available and matched to appropriate stages of Generation IV system concept development: 1) qualitative safety features review - QSR, 2) phenomena identification and ranking table - PIRT, 3) objective provision tree - OPT, 4) deterministic and phenomenological analyses - DPA, and 5) probabilistic safety analysis - PSA. The integrated methodology is intended to yield safety-related insights that help actively drive the evolving design throughout the technology development cycle, potentially resulting in enhanced safety, reduced costs, and shortened development time

  4. Time Based Workload Analysis Method for Safety-Related Operator Actions in Safety Analysis

    Energy Technology Data Exchange (ETDEWEB)

    Kim, Yun Goo; Oh, Eung Se [Korea Hydro and Nuclear Power Co., Daejeon (Korea, Republic of)

    2016-05-15

    During the design basis event, the safety system performs safety functions to mitigate the event. The most of safety system is actuated by automatic system however, there are operator manual actions that are needed for the plant safety. These operator actions are classified as important human actions in human factors engineering design. The human factors engineering analysis and evaluation is needed for these important human actions to assure that operator successfully perform their tasks for plant safety and operational goals. The work load analysis is one of the required analysis for the important human actions.

  5. Time Based Workload Analysis Method for Safety-Related Operator Actions in Safety Analysis

    International Nuclear Information System (INIS)

    Kim, Yun Goo; Oh, Eung Se

    2016-01-01

    During the design basis event, the safety system performs safety functions to mitigate the event. The most of safety system is actuated by automatic system however, there are operator manual actions that are needed for the plant safety. These operator actions are classified as important human actions in human factors engineering design. The human factors engineering analysis and evaluation is needed for these important human actions to assure that operator successfully perform their tasks for plant safety and operational goals. The work load analysis is one of the required analysis for the important human actions.

  6. SAGES TAVAC safety and effectiveness analysis: da Vinci ® Surgical System (Intuitive Surgical, Sunnyvale, CA).

    Science.gov (United States)

    Tsuda, Shawn; Oleynikov, Dmitry; Gould, Jon; Azagury, Dan; Sandler, Bryan; Hutter, Matthew; Ross, Sharona; Haas, Eric; Brody, Fred; Satava, Richard

    2015-10-01

    The da Vinci(®) Surgical System (Intuitive Surgical, Sunnyvale, CA, USA) is a computer-assisted (robotic) surgical system designed to enable and enhance minimally invasive surgery. The Food and Drug Administration (FDA) has cleared computer-assisted surgical systems for use by trained physicians in an operating room environment for laparoscopic surgical procedures in general, cardiac, colorectal, gynecologic, head and neck, thoracic and urologic surgical procedures. There are substantial numbers of peer-reviewed papers regarding the da Vinci(®) Surgical System, and a thoughtful assessment of evidence framed by clinical opinion is warranted. The SAGES da Vinci(®) TAVAC sub-committee performed a literature review of the da Vinci(®) Surgical System regarding gastrointestinal surgery. Conclusions by the sub-committee were vetted by the SAGES TAVAC Committee and SAGES Executive Board. Following revisions, the document was evaluated by the TAVAC Committee and Executive Board again for final approval. Several conclusions were drawn based on expert opinion organized by safety, efficacy, and cost for robotic foregut, bariatric, hepatobiliary/pancreatic, colorectal surgery, and single-incision cholecystectomy. Gastrointestinal surgery with the da Vinci(®) Surgical System is safe and comparable, but not superior to standard laparoscopic approaches. Although clinically acceptable, its use may be costly for select gastrointestinal procedures. Current data are limited to the da Vinci(®) Surgical System; further analyses are needed.

  7. Structural analysis of a rehabilitative training system based on a ceiling rail for safety of hemiplegia patients.

    Science.gov (United States)

    Kim, Kyong; Song, Won Kyung; Chong, Woo Suk; Yu, Chang Ho

    2018-04-17

    The body-weight support (BWS) function, which helps to decrease load stresses on a user, is an effective tool for gait and balance rehabilitation training for elderly people with weakened lower-extremity muscular strength, hemiplegic patients, etc. This study conducts structural analysis to secure user safety in order to develop a rail-type gait and balance rehabilitation training system (RRTS). The RRTS comprises a rail, trolley, and brain-machine interface. The rail (platform) is connected to the ceiling structure, bearing the loads of the RRTS and of the user and allowing locomobility. The trolley consists of a smart drive unit (SDU) that assists the user with forward and backward mobility and a body-weight support (BWS) unit that helps the user to control his/her body-weight load, depending on the severity of his/her hemiplegia. The brain-machine interface estimates and measures on a real-time basis the body-weight (load) of the user and the intended direction of his/her movement. Considering the weight of the system and the user, the mechanical safety performance of the system frame under an applied 250-kg static load is verified through structural analysis using ABAQUS (6.14-3) software. The maximum stresses applied on the rail and trolley under the given gravity load of 250 kg, respectively, are 18.52 MPa and 48.44 MPa. The respective safety factors are computed to be 7.83 and 5.26, confirming the RRTS's mechanical safety. An RRTS with verified structural safety could be utilized for gait movement and balance rehabilitation and training for patients with hemiplegia.

  8. Software Quality Assurance for Nuclear Safety Systems

    International Nuclear Information System (INIS)

    Sparkman, D R; Lagdon, R

    2004-01-01

    The US Department of Energy has undertaken an initiative to improve the quality of software used to design and operate their nuclear facilities across the United States. One aspect of this initiative is to revise or create new directives and guides associated with quality practices for the safety software in its nuclear facilities. Safety software includes the safety structures, systems, and components software and firmware, support software and design and analysis software used to ensure the safety of the facility. DOE nuclear facilities are unique when compared to commercial nuclear or other industrial activities in terms of the types and quantities of hazards that must be controlled to protect workers, public and the environment. Because of these differences, DOE must develop an approach to software quality assurance that ensures appropriate risk mitigation by developing a framework of requirements that accomplishes the following goals: (sm b ullet) Ensures the software processes developed to address nuclear safety in design, operation, construction and maintenance of its facilities are safe (sm b ullet) Considers the larger system that uses the software and its impacts (sm b ullet) Ensures that the software failures do not create unsafe conditions Software designers for nuclear systems and processes must reduce risks in software applications by incorporating processes that recognize, detect, and mitigate software failure in safety related systems. It must also ensure that fail safe modes and component testing are incorporated into software design. For nuclear facilities, the consideration of risk is not necessarily sufficient to ensure safety. Systematic evaluation, independent verification and system safety analysis must be considered for software design, implementation, and operation. The software industry primarily uses risk analysis to determine the appropriate level of rigor applied to software practices. This risk-based approach distinguishes safety

  9. Probabilistic Analysis of Passive Safety System Reliability in Advanced Small Modular Reactors: Methodologies and Lessons Learned

    Energy Technology Data Exchange (ETDEWEB)

    Grabaskas, David; Bucknor, Matthew; Brunett, Acacia; Grelle, Austin

    2015-06-28

    Many advanced small modular reactor designs rely on passive systems to fulfill safety functions during accident sequences. These systems depend heavily on boundary conditions to induce a motive force, meaning the system can fail to operate as intended due to deviations in boundary conditions, rather than as the result of physical failures. Furthermore, passive systems may operate in intermediate or degraded modes. These factors make passive system operation difficult to characterize with a traditional probabilistic framework that only recognizes discrete operating modes and does not allow for the explicit consideration of time-dependent boundary conditions. Argonne National Laboratory has been examining various methodologies for assessing passive system reliability within a probabilistic risk assessment for a station blackout event at an advanced small modular reactor. This paper describes the most promising options: mechanistic techniques, which share qualities with conventional probabilistic methods, and simulation-based techniques, which explicitly account for time-dependent processes. The primary intention of this paper is to describe the strengths and weaknesses of each methodology and highlight the lessons learned while applying the two techniques while providing high-level results. This includes the global benefits and deficiencies of the methods and practical problems encountered during the implementation of each technique.

  10. Comprehensive analysis of pipeline transportation systems for CO2 sequestration. Thermodynamics and safety problems

    International Nuclear Information System (INIS)

    Witkowski, Andrzej; Rusin, Andrzej; Majkut, Mirosław; Rulik, Sebastian; Stolecka, Katarzyna

    2013-01-01

    Highlights: • Comprehensive analysis of the efficiency and safety strategies of transport CO 2 . • Selection of safety zones around pipelines transporting CO 2 . • Optimization of CO 2 pipeline transportation conditions. - Abstract: The aim of this paper is to analyze CO 2 compression and transportation processes with safety issues for post-combustion CO 2 capture applications for basic technological concepts of a 900 MW pulverized coal-fired power plant. Four various types of compressors including a conventional multistage centrifugal compressor, an integrally geared centrifugal compressor, a supersonic shock wave compressor, and pump machines were used. This study emphasizes that total compression power is a strong function of the thermodynamic process and is not only determined by the compressor efficiency. The compressor increases the CO 2 pressure from normal pressure to critical pressure and the boosting pump continues to increase the pressure to the required pressure for the pipeline inlet. Another problem analyzed in this study is the transport of CO 2 by pipeline from the compressor outlet site to the disposal site under heat transfer conditions. Simulations were made to determine maximum safe pipeline distance to subsequent booster stations depending on inlet pressure, environmental temperature, the thermal insulation thickness and the ground level heat transfer conditions. From the point of view of environmental protection, the most important problem is to identify the hazards which indirectly affect CO 2 transportation in a strict and reliable manner. This identification is essential for effective hazard management. A failure of pipelines is usually caused by corrosion, material defects, ground movement or third party interference. After the rupture of the pipeline transporting liquid CO 2 , a large pressure drop will occur. The pressure will continue to fall until the liquid becomes a mixture of saturated vapour/liquid. In the vicinity of the

  11. Strategies to increase patient safety in haemodialysis: Application of the modal analysis system of errors and effects (FEMA system

    Directory of Open Access Journals (Sweden)

    María Dolores Arenas Jiménez

    2017-11-01

    Full Text Available Background: Haemodialysis (HD patients are a high-risk population group. For these patients, an error could have catastrophic consequences. Therefore, system that ensures the safety of these patients in an environment with high technology and great interaction of the human factor is a requirement. Objectives: To show a systematic working approach, reproducible in any HD unit, which consists of recording the complications and errors that occurred during the HD session; defining which of those complications could be considered adverse event (AE, and therefore preventable; and carrying out a systematic analysis of them, as well as of underlying real or potential errors, evaluating their severity, frequency and detection; as well as establishing priorities for action (Failure Mode and Effects Analysis system [FMEA systems]. Methods: Retrospective analysis of the graphs of all HD sessions performed during one month (October 2015 on 97 patients, analysing all recorded complications. The consideration of these complications as AEs was based on a consensus among 13 health professionals and 2 patients. The severity, frequency and detection of each AE were evaluated by the FMEA system. Results: We analysed 1303 HD treatments in 97 patients. A total of 383 complications (1 every 3.4 HD treatments were recorded. Approximately 87.9% of them were deemed AEs and 23.7% complications related with patients’ underlying pathology. There was one AE every 3.8 HD treatments. Hypertension and hypotension were the most frequent AEs (42.7 and 27.5% of all AEs recorded, respectively. Vascular-access related AEs were one every 68.5 HD treatments. A total of 21 errors (1 every 62 HD treatments, mainly related to the HD technique and to the administration of prescribed medication, were registered. The highest risk priority number, according to the FMEA, corresponded to errors related to patient body weight; dysfunction/rupture of the catheter; and needle extravasation

  12. Safety significance evaluation system

    International Nuclear Information System (INIS)

    Lew, B.S.; Yee, D.; Brewer, W.K.; Quattro, P.J.; Kirby, K.D.

    1991-01-01

    This paper reports that the Pacific Gas and Electric Company (PG and E), in cooperation with ABZ, Incorporated and Science Applications International Corporation (SAIC), investigated the use of artificial intelligence-based programming techniques to assist utility personnel in regulatory compliance problems. The result of this investigation is that artificial intelligence-based programming techniques can successfully be applied to this problem. To demonstrate this, a general methodology was developed and several prototype systems based on this methodology were developed. The prototypes address U.S. Nuclear Regulatory Commission (NRC) event reportability requirements, technical specification compliance based on plant equipment status, and quality assurance assistance. This collection of prototype modules is named the safety significance evaluation system

  13. Aviation Fuel System Reliability and Fail-Safety Analysis. Promising Alternative Ways for Improving the Fuel System Reliability

    Directory of Open Access Journals (Sweden)

    I. S. Shumilov

    2017-01-01

    Full Text Available The paper deals with design requirements for an aviation fuel system (AFS, AFS basic design requirements, reliability, and design precautions to avoid AFS failure. Compares the reliability and fail-safety of AFS and aircraft hydraulic system (AHS, considers the promising alternative ways to raise reliability of fuel systems, as well as elaborates recommendations to improve reliability of the pipeline system components and pipeline systems, in general, based on the selection of design solutions.It is extremely advisable to design the AFS and AHS in accordance with Aviation Regulations АП25 and Accident Prevention Guidelines, ICAO (International Civil Aviation Association, which will reduce risk of emergency situations, and in some cases even avoid heavy disasters.ATS and AHS designs should be based on the uniform principles to ensure the highest reliability and safety. However, currently, this principle is not enough kept, and AFS looses in reliability and fail-safety as compared with AHS. When there are the examined failures (single and their combinations the guidelines to ensure the AFS efficiency should be the same as those of norm-adopted in the Regulations АП25 for AHS. This will significantly increase reliability and fail-safety of the fuel systems and aircraft flights, in general, despite a slight increase in AFS mass.The proposed improvements through the use of components redundancy of the fuel system will greatly raise reliability of the fuel system of a passenger aircraft, which will, without serious consequences for the flight, withstand up to 2 failures, its reliability and fail-safety design will be similar to those of the AHS, however, above improvement measures will lead to a slightly increasing total mass of the fuel system.It is advisable to set a second pump on the engine in parallel with the first one. It will run in case the first one fails for some reasons. The second pump, like the first pump, can be driven from the

  14. Insight from a Critical Review on the Safety Analysis of Nuclear Fuel Cycle Facility for Domestic Regulatory System

    International Nuclear Information System (INIS)

    Hong, Soon Joon; Chung, Young Wook; Jeong, Seung Young

    2010-01-01

    Korea has 20 nuclear power plants in operation, and 10,761 ton of spent fuel deposited in plant sites. The capacity of reservoir for spent fuel in plant sites is to begin to be full in 2016. The light water reactors of 16 units generate around 320 ton/year and the heavy water reactors of 4 units around 380 ton/year in Korea. And the electricity generated by nuclear power plants is planned to increase up to 59% share by 2030. Spent fuel classified as high level radioactive waste in law is characterized by high level radiation, high heat generation, and high radiological toxicity. In the contrary, it is also a very useful domestic energy source. Thus, the safe management of spent fuel is very important confronting job in nuclear industry. Advanced fuel cycle (AFC) using pyro-process is an innovative technology, by which environmental load is drastically relieved because the extracted long-lived fission products are burn in fast breeder reactors. Domestic nuclear industry also has a perspective road map for the construction of AFC facilities. However, there is not a sufficiently detailed licensing regulatory system yet. Moreover, there is no systematic frame for the safety evaluation. This paper reviews the safety analysis system of foreign fuel cycle facilities. Critical review leads to the insight for setting-up safety analysis system of domestic AFC facilities

  15. Evaluating safety management system implementation

    International Nuclear Information System (INIS)

    Preuss, M.

    2009-01-01

    Canada is committed to not only maintaining, but also improving upon our record of having one of the safest aviation systems in the world. The development, implementation and maintenance of safety management systems is a significant step towards improving safety performance. Canada is considered a world leader in this area and we are fully engaged in implementation. By integrating risk management systems and business practices, the aviation industry stands to gain better safety performance with less regulatory intervention. These are important steps towards improving safety and enhancing the public's confidence in the safety of Canada's aviation system. (author)

  16. IEEE standard requirements for reliability analysis in the design and operation of safety systems for nuclear power generating stations

    International Nuclear Information System (INIS)

    Anon.

    1976-01-01

    The purpose of this standard is to provide uniform, minimum acceptable requirements for the performance of reliability analyses for safety-related systems found in nuclear-power generating stations, but not to define the need for an analysis. The need for reliability analysis has been identified in other standards which expand the requirements of regulations (e.g., IEEE Std 379-1972 (ANSI N41.2-1972), ''Guide for the Application of the Single-Failure Criterion to Nuclear Power Generating Station Protection System,'' which describes the application of the single-failure criterion). IEEE Std 352-1975, ''Guide for General Principles of Reliability Analysis of Nuclear Power Generating Station Protection Systems,'' provides guidance in the application and use of reliability techniques referred to in this standard

  17. INTEGRATED SAFETY MANAGEMENT SYSTEM IN AIR TRAFFIC SERVICES

    Directory of Open Access Journals (Sweden)

    Volodymyr Kharchenko

    2014-06-01

    Full Text Available The article deals with the analysis of the researches conducted in the field of safety management systems.Safety management system framework, methods and tools for safety analysis in Air Traffic Control have been reviewed.Principles of development of Integrated safety management system in Air Traffic Services have been proposed.

  18. Ergonomics in the context of system safety

    International Nuclear Information System (INIS)

    Donnelly, K.E.

    1984-01-01

    In a complex industrial environment, ergonomics must be combined with management science and systems analysis to produce a program which can create effective change and improve safety performance. We give an overview of such an approach, namely System Safety, so that its ergonomic content may be seen

  19. Safety Analysis of the Movable Absorber TCDQ in the LHC Beam Dumping System

    CERN Document Server

    Filippini, R

    2009-01-01

    The LHC Beam Dumping System nominally dumps the beam synchronously with the passage of the particle free beam abort gap at the beam dump extraction kickers. In the case of an asynchronous beam dump the TCDQ absorber protects the machine aperture. It is a single sided collimator, positioned close to the beam and it has to follow the beam position and beam size during the energy ramp. This report assesses the different failure scenarios of TCDQ positioning and their likelihood. The failure probability for the two TCDQ systems together is estimated to be 3.6 E-05 (mean value) for one year of LHC operation. This corresponds to a SIL4 safety level, which is considered sufficient. The three dominant failure modes are highlighted. The calculated failure probability refers to scenarios that are generated and developed inside the TCDQ system. Potential failure sources not included are the interaction with external systems: the transmission of the start signal to the PLC from a dedicated timing card and the manual opti...

  20. Thermophysical properties of thorium and uranium systems for use in reactor safety analysis

    International Nuclear Information System (INIS)

    Fink, J.K.; Chasanov, M.G.; Leibowitz, L.

    1977-06-01

    The data compilation is intended to serve as a preliminary set of thermophysical property values for use in reactor safety analyses of the Th-- 233 U reactor concept. The properties covered include mp, bp, enthalpy, heats of vaporization and fusion, heat capacity, thermal conductivity, density, thermal expansion, emissivity, viscosity, etc. The systems covered are Th, Th 0 . 9 U 0 . 1 , U, ThO 2 , Th 0 . 9 U 0 . 1 O 2 , UO 2 , U 0 . 8 Pu 0 . 2 O 2 , ThC, Th 0 . 9 U 0 . 1 C, UC, U 0 . 8 Pu 0 . 2 C, ThC 2 , Th 0 . 9 U 0 . 1 C 2 , and UC 2 . 5 figures, 10 tables, 150 references

  1. Preliminary safety evaluation for CSR1000 with passive safety system

    International Nuclear Information System (INIS)

    Wu, Pan; Gou, Junli; Shan, Jianqiang; Zhang, Bo; Li, Xiang

    2014-01-01

    Highlights: • The basic information of a Chinese SCWR concept CSR1000 is introduced. • An innovative passive safety system is proposed for CSR1000. • 6 Transients and 3 accidents are analysed with system code SCTRAN. • The passive safety systems greatly mitigate the consequences of these incidents. • The inherent safety of CSR1000 is enhanced. - Abstract: This paper describes the preliminary safety analysis of the Chinese Supercritical water cooled Reactor (CSR1000), which is proposed by Nuclear Power Institute of China (NPIC). The two-pass core design applied to CSR1000 decreases the fuel cladding temperature and flattens the power distribution of the core at normal operation condition. Each fuel assembly is made up of four sub-assemblies with downward-flow water rods, which is favorable to the core cooling during abnormal conditions due to the large water inventory of the water rods. Additionally, a passive safety system is proposed for CSR1000 to increase the safety reliability at abnormal conditions. In this paper, accidents of “pump seizure”, “loss of coolant flow accidents (LOFA)”, “core depressurization”, as well as some typical transients are analysed with code SCTRAN, which is a one-dimensional safety analysis code for SCWRs. The results indicate that the maximum cladding surface temperatures (MCST), which is the most important safety criterion, of the both passes in the mentioned incidents are all below the safety criterion by a large margin. The sensitivity analyses of the delay time of RCPs trip in “loss of offsite power” and the delay time of RMT actuation in “loss of coolant flowrate” were also included in this paper. The analyses have shown that the core design of CSR1000 is feasible and the proposed passive safety system is capable of mitigating the consequences of the selected abnormalities

  2. Development of safety analysis technology for LMR

    International Nuclear Information System (INIS)

    Hahn, Do Hee; Kwon, Y. M.; Kim, K. D.

    2000-05-01

    The analysis methodologies as well as the analysis computer code system for the transient, HCDA, and containment performance analyses, which are required for KALIMER safety analyses, have been developed. The SSC-K code has been developed based on SSC-L which is an analysis code for loop type LMR, by improving models necessary for the KALIMER system analysis, and additional models have been added to the code. In addition, HCDA analysis model has been developed and the containment performance analysis code has been also improved. The preliminary basis for the safety analysis has been established, and the preliminary safety analyses for the key design features have been performed. In addition, a state-of-art analysis for LMR PSA and overseas safety and licensing requirements have been reviewed. The design database for the systematic management of the design documents as well as design processes has been established as well

  3. Development of safety analysis technology for LMR

    Energy Technology Data Exchange (ETDEWEB)

    Hahn, Do Hee; Kwon, Y. M.; Kim, K. D. [and others

    2000-05-01

    The analysis methodologies as well as the analysis computer code system for the transient, HCDA, and containment performance analyses, which are required for KALIMER safety analyses, have been developed. The SSC-K code has been developed based on SSC-L which is an analysis code for loop type LMR, by improving models necessary for the KALIMER system analysis, and additional models have been added to the code. In addition, HCDA analysis model has been developed and the containment performance analysis code has been also improved. The preliminary basis for the safety analysis has been established, and the preliminary safety analyses for the key design features have been performed. In addition, a state-of-art analysis for LMR PSA and overseas safety and licensing requirements have been reviewed. The design database for the systematic management of the design documents as well as design processes has been established as well.

  4. Research on application of system of neutron, thermohydraulic and safety analysis codes in order to simulation of the Dalat Nuclear Research Reactor

    International Nuclear Information System (INIS)

    Pham Van Lam; Le Vinh Vinh; Huynh Ton Nghiem

    2004-01-01

    Requirements of neutron, thermohydraulic and safety analysis calculation are very important because of issuing new version of SAR for DNRR, research on construction of new research reactor and nuclear power plant. Research on application of system of neutron, thermohydraulic and safety analysis codes in order to simulation of the Dalat Nuclear Research Reactor has been done in the frame work of research theme in the year 2002-2003. The purposes of the research are maintaining safety operation of the DNRR and enhancement of man power and calculation and safety analysis tool potential. (author)

  5. Can Patient Safety Incident Reports Be Used to Compare Hospital Safety? Results from a Quantitative Analysis of the English National Reporting and Learning System Data.

    Science.gov (United States)

    Howell, Ann-Marie; Burns, Elaine M; Bouras, George; Donaldson, Liam J; Athanasiou, Thanos; Darzi, Ara

    2015-01-01

    The National Reporting and Learning System (NRLS) collects reports about patient safety incidents in England. Government regulators use NRLS data to assess the safety of hospitals. This study aims to examine whether annual hospital incident reporting rates can be used as a surrogate indicator of individual hospital safety. Secondly assesses which hospital characteristics are correlated with high incident reporting rates and whether a high reporting hospital is safer than those lower reporting hospitals. Finally, it assesses which health-care professionals report more incidents of patient harm, which report more near miss incidents and what hospital factors encourage reporting. These findings may suggest methods for increasing the utility of reporting systems. This study used a mix methods approach for assessing NRLS data. The data were investigated using Pareto analysis and regression models to establish which patients are most vulnerable to reported harm. Hospital factors were correlated with institutional reporting rates over one year to examine what factors influenced reporting. Staff survey findings regarding hospital safety culture were correlated with reported rates of incidents causing harm; no harm and death to understand what barriers influence error disclosure. 5,879,954 incident reports were collected from acute hospitals over the decade. 70.3% of incidents produced no harm to the patient and 0.9% were judged by the reporter to have caused severe harm or death. Obstetrics and Gynaecology reported the most no harm events [OR 1.61(95%CI: 1.12 to 2.27), p<0.01] and pharmacy was the hospital location where most near-misses were captured [OR 3.03(95%CI: 2.04 to 4.55), p<0.01]. Clinicians were significantly more likely to report death than other staff [OR 3.04(95%CI: 2.43 to 3.80) p<0.01]. A higher ratio of clinicians to beds correlated with reduced rate of harm reported [RR = -1.78(95%Cl: -3.33 to -0.23), p = 0.03]. Litigation claims per bed were

  6. Time dependent unavailability analysis of nuclear safety systems considering periodically tested components

    International Nuclear Information System (INIS)

    Goes, Alexandre Gromann de Araujo

    1988-01-01

    It is of utmost importance to have a computer code in order to analyze how different parameters (like test duration time) affect the unavailability of safety systems of nuclear. In this context, a study was performed in order to evaluate the model employed by the FRANTIC computer code, which performs detailed calculations on the contribution to the system unavailability originated by hardware failures, component tests and repairs, aiming at considering the influence of different test schemes on the system unavailability. It was shown, by means of the results attained that the numerical model used by the FRANTIC code and the analytical model proposed by APOSTOLAKIS and CHU (4) give unavailability values much similar when the component tests are supposed to be perfect. When a test is supposed to be imperfect (that is, when it may induce a test is supposed to be imperfect (that is, when it may induce a failure on the component being tested), the analytical model presents more conservative results. (author)

  7. Reliability analysis of safety systems of nuclear power plant and utility experience with reliability safeguarding of systems during specified normal operation

    International Nuclear Information System (INIS)

    Balfanz, H.P.

    1989-01-01

    The paper gives an outline of the methods applied for reliability analysis of safety systems in nuclear power plant. The main tasks are to check the system design for detection of weak points, and to find possibilities of optimizing the strategies for inspection, inspection intervals, maintenance periods. Reliability safeguarding measures include the determination and verification of the broundary conditions of the analysis with regard to the reliability parameters and maintenance parameters used in the analysis, and the analysis of data feedback reflecting the plant response during operation. (orig.) [de

  8. The aviation safety reporting system

    Science.gov (United States)

    Reynard, W. D.

    1984-01-01

    The aviation safety reporting system, an accident reporting system, is presented. The system identifies deficiencies and discrepancies and the data it provides are used for long term identification of problems. Data for planning and policy making are provided. The system offers training in safety education to pilots. Data and information are drawn from the available data bases.

  9. Failure modes and effects analysis as a design tool for nuclear safety systems

    International Nuclear Information System (INIS)

    Tashjian, B.M.

    1975-01-01

    The activities of nuclear power plant designers are monitored by government and industry to an unprecedented degree. This involves not only rigid design and quality assurance criteria, but extensive documentation and reporting. The failure modes and effects analysis (FMEA) is a technique for checking designs and assuring quality. Included in the FMEA is a system of documentation. A simplified example of the reactor protective system (RPS) is used to illustrate the method. (U.S.)

  10. Comprehensive safety analysis code system for nuclear fusion reactors III: Ex-vessel LOCA analyses considering passive safety

    International Nuclear Information System (INIS)

    Honda, T.; Okazaki, T.; Maki, K.; Uda, T.; Seki, Y.; Aoki, I.; Kunugi, T.

    1996-01-01

    Ex-vessel loss-of-coolant accidents (LOCAs) in a fusion reactor have been analyzed to investigate the possibility of passive plasma shutdown. For this purpose, a hybrid code of the plasma dynamics and thermal characteristics of the reactor structures, which has been modified to include the impurity emission from plasma-facing components (PFCs), has been developed. Ex-vessel LOCAs of the cooling system during the ignition operation in the International Thermonuclear Experimental Reactor (ITER), in which graphite PFCs were employed in conceptual design activity, were assumed. When double-ended break occurs at the cold leg of the divertor cooling system, the copper cooling tube begins to melt within 3 s after the LOCA, even though the plasma is passively shut down at nearly 4 s. An active plasma shutdown system will be needed for such rapid transient accidents. On the other hand, when a small (1%) break LOCA occurs there, the plasma is passively shut down at nearly 36 s, which happens before the copper cooling tube begins to melt. When the double-ended break LOCA occurs at the cold leg of the first-wall cooling system, there is enough time (nearly 100 s) to shut down the plasma with a controllable method before the reactor structures are damaged. 21 refs., 8 figs

  11. Plant air systems safety study: Portsmouth Gaseous Diffusion Plant

    International Nuclear Information System (INIS)

    1982-05-01

    The Portsmouth Gaseous Diffusion Plant Air System facilities and operations are reviewed for potential safety problems not covered by standard industrial safety procedures. Information is presented under the following section headings: facility and process description (general); air plant equipment; air distribution system; safety systems; accident analysis; plant air system safety overview; and conclusion

  12. Systems analysis of radiation safety during dismantling of power-plant equipment at a nuclear power station

    International Nuclear Information System (INIS)

    Bylkin, B.K.; Shpitser, V.Ya.

    1993-01-01

    A systems analysis of the radiation safety makes possible an ad hoc determination of the elements forming the system, as well as the establishment of the characteristics of their interaction with radiation-effect factors. Here the authors will present part of the hierarchical analysis procedure, consisting in general of four separate procedures. The purpose is to investigate and analyze the mean and stable (on the average) indices of radiation safety, within the framework of alternative mathematical models of dismantling the power-plant equipment of a nuclear power station. The following three of the four procedures are discussed: (1) simulated projection, of the processing of radioactive waste; (2) analysis of the redistribution of radionuclides during the industrial cycle of waste treatment; (3) planning the collective dose load during the dismantling operation. Within the framework of the first of these procedures, the solutions to the problem of simulating a waste-treatment operation of maximum efficiency are analyzed. This analysis is based on the use of a data base for the parameters of the installations, assemblies, and equipment, enabling the integration of these in a simulation of a complex automated facility. The results were visualized in an AUTOCAD-10 medium using a graphical data base containing an explanation of the rooms

  13. Safety logic systems of PFBR

    International Nuclear Information System (INIS)

    Sambasivan, S. Ilango

    2004-01-01

    Full text : PFBR is provided with two independent, fast acting and diverse shutdown systems to detect any abnormalities and to initiate safety action. Each system consists of sensors, signal processing systems, logics, drive mechanisms and absorber rods. The absorber rods of the first system are Control and Safety Rods (CSR) and that of the second are called as Diverse Safety Rods (DSR). There are nine CSR and three DSR. While CSR are used for startup, control of reactor power, controlled shutdown and SCRAM, the DSR are used only for SCRAM. The respective drive mechanisms are called as CSRDM and DSRDM. Each of these two systems is capable of executing the shutdown satisfactorily with single failure criteria. Two independent safety logic systems based on diverse principles have been designed for the two shut down systems. The analog outputs of the sensors of Core Monitoring Systems comprising of reactor flux monitoring, core temperature monitoring, failed fuel detection and core flow monitoring systems are processed and converted into binary signals depending on their instantaneous values. Safety logic systems receive the binary signals from these core-monitoring systems and process them logically to protect the reactor against postulated initiating events. Neutronic and power to flow (P/Q) signals form the inputs to safety logic system-I and temperature signals are inputs to the safety logic system II. Failed fuel detection signals are processed by both the shut down systems. The two logic systems to actuate the safety rods are also based on two diverse designs and implemented with solid-state devices to meet all the requirements of safety systems. Safety logic system I that caters to neutronic and P/Q signals is designed around combinational logic and has an on-line test facility to detect struck at faults. The second logic system is based on dynamic logic and hence is inherently safe. This paper gives an overview of the two logic systems that have been

  14. [A systemic risk analysis of hospital management processes by medical employees--an effective basis for improving patient safety].

    Science.gov (United States)

    Sobottka, Stephan B; Eberlein-Gonska, Maria; Schackert, Gabriele; Töpfer, Armin

    2009-01-01

    Due to the knowledge gap that exists between patients and health care staff the quality of medical treatment usually cannot be assessed securely by patients. For an optimization of safety in treatment-related processes of medical care, the medical staff needs to be actively involved in preventive and proactive quality management. Using voluntary, confidential and non-punitive systematic employee surveys, vulnerable topics and areas in patient care revealing preventable risks can be identified at an early stage. Preventive measures to continuously optimize treatment quality can be defined by creating a risk portfolio and a priority list of vulnerable topics. Whereas critical incident reporting systems are suitable for continuous risk assessment by detecting safety-relevant single events, employee surveys permit to conduct a systematic risk analysis of all treatment-related processes of patient care at any given point in time.

  15. A framework for the system-of-systems analysis of the risk for a safety-critical plant exposed to external events

    International Nuclear Information System (INIS)

    Zio, E.; Ferrario, E.

    2013-01-01

    We consider a critical plant exposed to risk from external events. We propose an original framework of analysis, which extends the boundaries of the study to the interdependent infrastructures which support the plant. For the purpose of clearly illustrating the conceptual framework of system-of-systems analysis, we work out a case study of seismic risk for a nuclear power plant embedded in the connected power and water distribution, and transportation networks which support its operation. The technical details of the systems considered (including the nuclear power plant) are highly simplified, in order to preserve the purpose of illustrating the conceptual, methodological framework of analysis. Yet, as an example of the approaches that can be used to perform the analysis within the proposed framework, we consider the Muir Web as system analysis tool to build the system-of-systems model and Monte Carlo simulation for the quantitative evaluation of the model. The numerical exercise, albeit performed on a simplified case study, serves the purpose of showing the opportunity of accounting for the contribution of the interdependent infrastructure systems to the safety of a critical plant. This is relevant as it can lead to considerations with respect to the decision making related to safety critical-issues. -- Highlights: ► We consider a critical plant exposed to risk from external events. ► We consider also the interdependent infrastructures that support the plant. ► We use Muir Web as system analysis tool to build the system-of-systems model. ► We use Monte Carlo simulation for the quantitative evaluation of the model. ► We find that the interdependent infrastructures should be considered as they can be a support for the critical plant safety

  16. Infusing Reliability Techniques into Software Safety Analysis

    Science.gov (United States)

    Shi, Ying

    2015-01-01

    Software safety analysis for a large software intensive system is always a challenge. Software safety practitioners need to ensure that software related hazards are completely identified, controlled, and tracked. This paper discusses in detail how to incorporate the traditional reliability techniques into the entire software safety analysis process. In addition, this paper addresses how information can be effectively shared between the various practitioners involved in the software safety analyses. The author has successfully applied the approach to several aerospace applications. Examples are provided to illustrate the key steps of the proposed approach.

  17. Hot Cell Facility (HCF) Safety Analysis Report

    Energy Technology Data Exchange (ETDEWEB)

    MITCHELL,GERRY W.; LONGLEY,SUSAN W.; PHILBIN,JEFFREY S.; MAHN,JEFFREY A.; BERRY,DONALD T.; SCHWERS,NORMAN F.; VANDERBEEK,THOMAS E.; NAEGELI,ROBERT E.

    2000-11-01

    This Safety Analysis Report (SAR) is prepared in compliance with the requirements of DOE Order 5480.23, Nuclear Safety Analysis Reports, and has been written to the format and content guide of DOE-STD-3009-94 Preparation Guide for U. S. Department of Energy Nonreactor Nuclear Safety Analysis Reports. The Hot Cell Facility is a Hazard Category 2 nonreactor nuclear facility, and is operated by Sandia National Laboratories for the Department of Energy. This SAR provides a description of the HCF and its operations, an assessment of the hazards and potential accidents which may occur in the facility. The potential consequences and likelihood of these accidents are analyzed and described. Using the process and criteria described in DOE-STD-3009-94, safety-related structures, systems and components are identified, and the important safety functions of each SSC are described. Additionally, information which describes the safety management programs at SNL are described in ancillary chapters of the SAR.

  18. Hot Cell Facility (HCF) Safety Analysis Report

    International Nuclear Information System (INIS)

    MITCHELL, GERRY W.; LONGLEY, SUSAN W.; PHILBIN, JEFFREY S.; MAHN, JEFFREY A.; BERRY, DONALD T.; SCHWERS, NORMAN F.; VANDERBEEK, THOMAS E.; NAEGELI, ROBERT E.

    2000-01-01

    This Safety Analysis Report (SAR) is prepared in compliance with the requirements of DOE Order 5480.23, Nuclear Safety Analysis Reports, and has been written to the format and content guide of DOE-STD-3009-94 Preparation Guide for U. S. Department of Energy Nonreactor Nuclear Safety Analysis Reports. The Hot Cell Facility is a Hazard Category 2 nonreactor nuclear facility, and is operated by Sandia National Laboratories for the Department of Energy. This SAR provides a description of the HCF and its operations, an assessment of the hazards and potential accidents which may occur in the facility. The potential consequences and likelihood of these accidents are analyzed and described. Using the process and criteria described in DOE-STD-3009-94, safety-related structures, systems and components are identified, and the important safety functions of each SSC are described. Additionally, information which describes the safety management programs at SNL are described in ancillary chapters of the SAR

  19. Intermediate probabilistic safety assessment approach for safety critical digital systems

    International Nuclear Information System (INIS)

    Taeyong, Sung; Hyun Gook, Kang

    2001-01-01

    Even though the conventional probabilistic safety assessment methods are immature for applying to microprocessor-based digital systems, practical needs force to apply it. In the Korea, UCN 5 and 6 units are being constructed and Korean Next Generation Reactor is being designed using the digital instrumentation and control equipment for the safety related functions. Korean regulatory body requires probabilistic safety assessment. This paper analyzes the difficulties on the assessment of digital systems and suggests an intermediate framework for evaluating their safety using fault tree models. The framework deals with several important characteristics of digital systems including software modules and fault-tolerant features. We expect that the analysis result will provide valuable design feedback. (authors)

  20. Aviation Safety Hotline Information System -

    Data.gov (United States)

    Department of Transportation — The Aviation Safety Hotline Information System (ASHIS) collects, stores, and retrieves reports submitted by pilots, mechanics, cabin crew, passengers, or the public...

  1. Traceability of Software Safety Requirements in Legacy Safety Critical Systems

    Science.gov (United States)

    Hill, Janice L.

    2007-01-01

    How can traceability of software safety requirements be created for legacy safety critical systems? Requirements in safety standards are imposed most times during contract negotiations. On the other hand, there are instances where safety standards are levied on legacy safety critical systems, some of which may be considered for reuse for new applications. Safety standards often specify that software development documentation include process-oriented and technical safety requirements, and also require that system and software safety analyses are performed supporting technical safety requirements implementation. So what can be done if the requisite documents for establishing and maintaining safety requirements traceability are not available?

  2. Degradation of safety injection system and containment spray piping and tank fracture toughness analysis

    International Nuclear Information System (INIS)

    Douglas, A.; Doubel, P.; Wicker, C.

    2011-01-01

    Extensive stress corrosion cracking (SCC), induced by the marine environment and the presence of high residual stresses arising from the respective manufacturing processes has been encountered in the safety injection system piping (RIS), containment spray system piping (EAS) and reactor and spent fuel storage tank (PTR), or refuelling water storage tank (RWST) of the Koeberg plant. Type 304L steels from the RIS system and replacement components for the RIS and RWST systems have been subject to mechanical and fracture toughness testing. The following conclusions have been drawn. -) The piping sections of both the original and replacement components exhibit residual cold work. The level of cold work imparted to the piping and elbow have been estimated to be 2, 2 to 3, 9% and 5, 7 to 7, 3% respectively. -) Re-annealing produces different responses in type 304L as a function of prior cold work level. Re-annealing of material cold worked to low levels i.e. 3.5% maintain the cold worked level of UTS but can exhibit 0, 2% PS. levels below that of the mill annealed condition. There is the potential for the ASTM A312 minimum 0, 2% level to be breached. At higher levels of cold work i.e. 7% re-annealing results in extensive grain growth, a significant reduction in 0, 2% PS from the mill annealed condition and the recovery of the UTS to the mill annealed level. -) Cold work at the levels obtained significantly reduces the SOL initiation toughness Ji. The reduction in toughness can be greater than 50%. The resistance to ductile crack propagation, dJ/da, remains unchanged at least up to 5 % cold work. -) The defect assessment for the RIS/EAS systems have used highly conservative values of initiation toughness such that no crack initiation would occur under the loading conditions considered and in a non-hostile environment. -) Under the marine environment to which the RIS/EAS components are still subjected, the limiting criterion for operation of the RIS/EAS system remains a

  3. Analysis of Reactor Pressurized Thermal Shock Conditions Considering Upgrading of Systems Important to Safety

    International Nuclear Information System (INIS)

    Mazurok, A.S; Vyshemirskyij, M.P.

    2015-01-01

    The paper analyzes conditions of pressurized thermal shock on the reactor pressure vessel taking into account upgrading of the emergency core cooling system and primary overpressure protection system. For representative accident scenarios, calculation and comparative analysis was carried out. These scenarios include a small leak from the hot leg and PRZ SV stuck opening with re closure after 3600 sec and 3 SG heat transfer tube rupture. The efficiency of mass flow control by valves on the pump head (emergency core cooling systems) and cold overpressure protection (primary overpressure protection system) was analyzed. The thermal hydraulic model for RELAP5/Mod3.2 code with detailed downcomer (DC) model and changes in accordance with upgrades was used for calculations. Detailed (realistic) modeling of piping and equipment was performed. The upgrades prevent excessive primary cooling and, consequently, help to preserve the RPV integrity and to avoid the formation of a through crack, which can lead to a severe accident

  4. Probabilistic safety analysis of the containment spray system of Angra-1 reactor

    International Nuclear Information System (INIS)

    Gibelli, S.M.O.

    1981-02-01

    The calculation of the unavailability of the containment spray system of Angra-1, is done. The referred system has two different modes of operation (injection and recirculation) which were separately studied using the fault tree methodology. Besides equipment and human error failures, the contributions of test, maintenance and common-mode failures have also been considered. The quantitative evaluation was carried out by the computer code SAMPLE, which considers the uncertainties in the failures data and gives a distribution for the top event unavailability. The input data were obtained from the well-known Rasmussen Report. An importance analysis of the basic events of the trees was performed and a study of the viability of some suggestions for system design modification was also conducted. A comparison between the results obtained in this work and the corresponding ones in the Rasmussen Report has shown the fact that the unavailability of both systems are of the same order of magnitude. (Author) [pt

  5. Probabilistic analysis of reactor safety - The auxiliary feedwater system of Angra I

    International Nuclear Information System (INIS)

    Oliveira, L.C.R. da L.C. de.

    1981-09-01

    The unavailability of the auxiliary feedwater system (AFWS) of Angra-1, was calculated. The fault tree analysis technique was used, considering two diferent types of contribution to system unavailability: The one due to hard-ware failure and the contribution due to test and maintenance which was separately analysed. The COMBO-and SAMPLE computer codes were used. The results have shown that the AFWS of Angra-1 contains enough redundancy to guarantee a safe operation under the conditions analysed, best values having been obtained for the unavailability of AFWS of Angra 1 with those codes than with the WASH-1400. (E.G.) [pt

  6. Analysis of general aviation single-pilot IFR incident data obtained from the NASA Aviation Safety Reporting System

    Science.gov (United States)

    Bergeron, H. P.

    1983-01-01

    An analysis of incident data obtained from the NASA Aviation Safety Reporting System (ASRS) has been made to determine the problem areas in general aviation single-pilot IFR (SPIFR) operations. The Aviation Safety Reporting System data base is a compilation of voluntary reports of incidents from any person who has observed or been involved in an occurrence which was believed to have posed a threat to flight safety. This paper examines only those reported incidents specifically related to general aviation single-pilot IFR operations. The frequency of occurrence of factors related to the incidents was the criterion used to define significant problem areas and, hence, to suggest where research is needed. The data was cataloged into one of five major problem areas: (1) controller judgment and response problems, (2) pilot judgment and response problems, (3) air traffic control (ATC) intrafacility and interfacility conflicts, (4) ATC and pilot communication problems, and (5) IFR-VFR conflicts. In addition, several points common to all or most of the problems were observed and reported. These included human error, communications, procedures and rules, and work load.

  7. Ignalina NPP Safety Analysis: Models and Results

    International Nuclear Information System (INIS)

    Uspuras, E.

    1999-01-01

    Research directions, linked to safety assessment of the Ignalina NPP, of the scientific safety analysis group are presented: Thermal-hydraulic analysis of accidents and operational transients; Thermal-hydraulic assessment of Ignalina NPP Accident Localization System and other compartments; Structural analysis of plant components, piping and other parts of Main Circulation Circuit; Assessment of RBMK-1500 reactor core and other. Models and main works carried out last year are described. (author)

  8. Requirements and analysis of electromagnetic compatibility of safety-related instrumentation and control system in nuclear power plants

    International Nuclear Information System (INIS)

    Liu Sujuan

    2002-01-01

    The state-of-the-art instrumentation and control system and the influence of their application to the electromagnetic compatibility is analyzed. Based on the present situation of nuclear safety in China and relevant experiences from other countries, the author tries to probe into the requirements and test methods about how safety-related instrument and control system to accommodate electromagnetic interference, radio-frequency interference and power surges in the environments of nuclear power plant so as to develop Chinese safety standards

  9. Safety-critical Java for embedded systems

    DEFF Research Database (Denmark)

    Schoeberl, Martin; Dalsgaard, Andreas Engelbredt; Hansen, René Rydhof

    2016-01-01

    This paper presents the motivation for and outcomes of an engineering research project on certifiable Javafor embedded systems. The project supports the upcoming standard for safety-critical Java, which defines asubset of Java and libraries aiming for development of high criticality systems....... The outcome of this projectinclude prototype safety-critical Java implementations, a time-predictable Java processor, analysis tools formemory safety, and example applications to explore the usability of safety-critical Java for this applicationarea. The text summarizes developments and key contributions...

  10. Incorporating Hofstede’ National Culture in Human Factor Analysis and Classification System (HFACS: Cases of Indonesian Aviation Safety

    Directory of Open Access Journals (Sweden)

    Pratama Gradiyan Budi

    2018-01-01

    Full Text Available National culture plays an important role in the application of ergonomics and safety. This research examined role of national culture in accident analysis of Indonesian aviation using framework of Human Factors Analysis and Classification System (HFACS. 53 Indonesian aviation accidents during year of 2001-2012 were analyzed using the HFACS framework by authors and were validated to 14 air-transport experts in Indonesia. National culture is viewed with Hofstede’ lens of national culture. Result shows that high collectivistic, low uncertainty avoidance, high power distance, and masculinity dimension which are characteristics of Indonesian culture, play an important role in Indonesian aviation accident and should be incorporated within HFACS. Result is discussed in relation with HFACS and Indonesian aviation accident analysis.

  11. Architecture Level Safety Analyses for Safety-Critical Systems

    Directory of Open Access Journals (Sweden)

    K. S. Kushal

    2017-01-01

    Full Text Available The dependency of complex embedded Safety-Critical Systems across Avionics and Aerospace domains on their underlying software and hardware components has gradually increased with progression in time. Such application domain systems are developed based on a complex integrated architecture, which is modular in nature. Engineering practices assured with system safety standards to manage the failure, faulty, and unsafe operational conditions are very much necessary. System safety analyses involve the analysis of complex software architecture of the system, a major aspect in leading to fatal consequences in the behaviour of Safety-Critical Systems, and provide high reliability and dependability factors during their development. In this paper, we propose an architecture fault modeling and the safety analyses approach that will aid in identifying and eliminating the design flaws. The formal foundations of SAE Architecture Analysis & Design Language (AADL augmented with the Error Model Annex (EMV are discussed. The fault propagation, failure behaviour, and the composite behaviour of the design flaws/failures are considered for architecture safety analysis. The illustration of the proposed approach is validated by implementing the Speed Control Unit of Power-Boat Autopilot (PBA system. The Error Model Annex (EMV is guided with the pattern of consideration and inclusion of probable failure scenarios and propagation of fault conditions in the Speed Control Unit of Power-Boat Autopilot (PBA. This helps in validating the system architecture with the detection of the error event in the model and its impact in the operational environment. This also provides an insight of the certification impact that these exceptional conditions pose at various criticality levels and design assurance levels and its implications in verifying and validating the designs.

  12. MSSV Modeling for Wolsong-1 Safety Analysis

    Energy Technology Data Exchange (ETDEWEB)

    Moon, Bok Ja; Choi, Chul Jin; Kim, Seoung Rae [KEPCO EandC, Daejeon (Korea, Republic of)

    2010-10-15

    The main steam safety valves (MSSVs) are installed on the main steam line to prevent the overpressurization of the system. MSSVs are held in closed position by spring force and the valves pop open by internal force when the main steam pressure increases to open set pressure. If the overpressure condition is relieved, the valves begin to close. For the safety analysis of anticipated accident condition, the safety systems are modeled conservatively to simulate the accident condition more severe. MSSVs are also modeled conservatively for the analysis of over-pressurization accidents. In this paper, the pressure transient is analyzed at over-pressurization condition to evaluate the conservatism for MSSV models

  13. Operation safety of complex industrial systems

    International Nuclear Information System (INIS)

    Zwingelstein, G.

    1999-01-01

    Zero fault or zero risk is an unreachable goal in industrial activities like nuclear activities. However, methods and techniques exist to reduce the risks to the lowest possible and acceptable level. The operation safety consists in the recognition, evaluation, prediction, measurement and mastery of technological and human faults. This paper analyses each of these points successively: 1 - evolution of operation safety; 2 - definitions and basic concepts: failure, missions and functions of a system and of its components, basic concepts and operation safety; 3 - forecasting analysis of operation safety: reliability data, data-banks, precautions for the use of experience feedback data; realization of an operation safety study: management of operation safety, quality assurance, critical review and audit of operation safety studies; 6 - conclusions. (J.S.)

  14. Safety analysis of autonomous excavator functionality

    International Nuclear Information System (INIS)

    Seward, D.; Pace, C.; Morrey, R.; Sommerville, I.

    2000-01-01

    This paper presents an account of carrying out a hazard analysis to define the safety requirements for an autonomous robotic excavator. The work is also relevant to the growing generic class of heavy automated mobile machinery. An overview of the excavator design is provided and the concept of a safety manager is introduced. The safety manager is an autonomous module responsible for all aspects of system operational safety, and is central to the control system's architecture. Each stage of the hazard analysis is described, i.e. system model creation, hazard definition and hazard analysis. Analysis at an early stage of the design process, and on a system that interfaces directly to an unstructured environment, exposes certain issues relevant to the application of current hazard analysis methods. The approach taken in the analysis is described. Finally, it is explained how the results of the hazard analysis have influenced system design, in particular, safety manager specifications. Conclusions are then drawn about the applicability of hazard analysis of requirements in general, and suggestions are made as to how the approach can be taken further

  15. Conceptual design of an integrated information system for safety related analysis of nuclear power plants (IRIS Phase 1)

    International Nuclear Information System (INIS)

    Hofer, K.; Zehnder, P.; Galperin, A.

    1994-01-01

    This report deals with a conceptual design of an integrated information management system, called PSI-IRIS, as needed to assist the analysts for reactor safety related investigations on Swiss nuclear power plants within the project STARS. Performing complicated engineering analyses of an NPP requires storage and manipulation of a large amount of information, both data and knowledge. This information is characterized by its multi-disciplinary nature, complexity, and diversity. The problems caused by inefficient and lengthy manual operations involving the data flow management within the framework of the safety related analysis of an NPP, can be solved by applying computer aided engineering (CAE) principles. These principles are the basis for the design of the integrated information management system PSI-IRIS presented in this report. The basic idea is to create a computerized environment, which includes both database and functional capabilities. The database of the PSI-IRIS consists of two parts, an NPP generic database (GDB) and a collection of analysis results (CASE L IB). The GDB includes all technical plant data and information needed to generate input decks for all computer codes utilized within the STARS project. The CASE L IB storage contains the accumulated knowledge, input decks, and result files of the NPP transient analyses. Considerations and analysis of the data types and the required data manipulation capabilities as well as operational requirements resulted in the choice of an object-oriented database management system (OODBMS) as a development platform for solving the software engineering problems. Several advantages of OODBMS's over conventional relational database management systems were found of crucial importance, especially providing the necessary flexibility for different data types and the potential for extensibility. (author) 15 figs., tabs., 20 refs

  16. NASA Aviation Safety Program Systems Analysis/Program Assessment Metrics Review

    Science.gov (United States)

    Louis, Garrick E.; Anderson, Katherine; Ahmad, Tisan; Bouabid, Ali; Siriwardana, Maya; Guilbaud, Patrick

    2003-01-01

    The goal of this project is to evaluate the metrics and processes used by NASA's Aviation Safety Program in assessing technologies that contribute to NASA's aviation safety goals. There were three objectives for reaching this goal. First, NASA's main objectives for aviation safety were documented and their consistency was checked against the main objectives of the Aviation Safety Program. Next, the metrics used for technology investment by the Program Assessment function of AvSP were evaluated. Finally, other metrics that could be used by the Program Assessment Team (PAT) were identified and evaluated. This investigation revealed that the objectives are in fact consistent across organizational levels at NASA and with the FAA. Some of the major issues discussed in this study which should be further investigated, are the removal of the Cost and Return-on-Investment metrics, the lack of the metrics to measure the balance of investment and technology, the interdependencies between some of the metric risk driver categories, and the conflict between 'fatal accident rate' and 'accident rate' in the language of the Aviation Safety goal as stated in different sources.

  17. Computer codes for safety analysis

    International Nuclear Information System (INIS)

    Holland, D.F.

    1986-11-01

    Computer codes for fusion safety analysis have been under development in the United States for about a decade. This paper will discuss five codes that are currently under development by the Fusion Safety Program. The purpose and capability of each code will be presented, a sample given, followed by a discussion of the present status and future development plans

  18. Objective Oriented Design of Architecture for TH System Safety Analysis Code and Verification

    Energy Technology Data Exchange (ETDEWEB)

    Chung, Bub Dong

    2008-03-15

    In this work, objective oriented design of generic system analysis code has been tried based on the previous works in KAERI for two phase three field Pilot code. It has been performed to implement of input and output design, TH solver, component model, special TH models, heat structure solver, general table, trip and control, and on-line graphics. All essential features for system analysis has been designed and implemented in the final product SYSTF code. The computer language C was used for implementation in the Visual studio 2008 IDE (Integrated Development Environment) since it has easier and lighter than C++ feature. The code has simple and essential features of models and correlation, special component, special TH model and heat structure model. However the input features is able to simulate the various scenarios, such as steady state, non LOCA transient and LOCA accident. The structure validity has been tested through the various verification tests and it has been shown that the developed code can treat the non LOCA and LOCA simulation. However more detailed design and implementation of models are required to get the physical validity of SYSTF code simulation.

  19. Objective Oriented Design of Architecture for TH System Safety Analysis Code and Verification

    International Nuclear Information System (INIS)

    Chung, Bub Dong

    2008-03-01

    In this work, objective oriented design of generic system analysis code has been tried based on the previous works in KAERI for two phase three field Pilot code. It has been performed to implement of input and output design, TH solver, component model, special TH models, heat structure solver, general table, trip and control, and on-line graphics. All essential features for system analysis has been designed and implemented in the final product SYSTF code. The computer language C was used for implementation in the Visual studio 2008 IDE (Integrated Development Environment) since it has easier and lighter than C++ feature. The code has simple and essential features of models and correlation, special component, special TH model and heat structure model. However the input features is able to simulate the various scenarios, such as steady state, non LOCA transient and LOCA accident. The structure validity has been tested through the various verification tests and it has been shown that the developed code can treat the non LOCA and LOCA simulation. However more detailed design and implementation of models are required to get the physical validity of SYSTF code simulation

  20. Comprehensive safety analysis code system for nuclear fusion reactors II: Thermal analysis during plasma disruptions for international thermonuclear experimental reactor

    International Nuclear Information System (INIS)

    Honda, T.; Maki, K.; Okazaki, T.

    1994-01-01

    Thermal characteristics of a fusion reactor [International Thermonuclear Experimental Reactor (ITER) Conceptual Design Activity] during plasma disruptions have been analyzed by using a comprehensive safety analysis code for nuclear fusion reactors. The erosion depth due to disruptions for the armor of the first wall depends on the current quench time of disruptions occurring in normal operation. If it is possible to extend the time up to ∼50 ms, the erosion depth is considerably reduced. On the other hand, the erosion depth of the divertor is ∼570 μm for only one disruption, which is determined only by the thermal flux during the thermal quench. This means that the divertor plate should be exchanged after about nine disruptions. Counter-measures are necessary for the divertor to relieve disruption influences. As other scenarios of disruptions, beta-limit disruptions and vertical displacement events were also investigated quantitatively. 13 refs., 5 figs

  1. Using Addenda in Documented Safety Analysis Reports

    International Nuclear Information System (INIS)

    Swanson, D.S.; Thieme, M.A.

    2003-01-01

    This paper discusses the use of addenda to the Radioactive Waste Management Complex (RWMC) Documented Safety Analysis (DSA) located at the Idaho National Engineering and Environmental Laboratory (INEEL). Addenda were prepared for several systems and processes at the facility that lacked adequate descriptive information and hazard analysis in the DSA. They were also prepared for several new activities involving unreviewed safety questions (USQs). Ten addenda to the RWMC DSA have been prepared since the last annual update

  2. Safety analysis reports - new strategies

    International Nuclear Information System (INIS)

    Booth, J.A.

    1994-01-01

    Within the past year there have been many external changes in the requirements of safety analysis reports. Now there is emphasis on open-quotes graded approachesclose quotes depending on the Hazard Classification of the project. The Energy Facility Contractors Group (EFCOG) has a Safety Analysis Working Group. The results of this group for the past year are discussed as well as the implications for EG ampersand G. New strategies include ideas for incorporating the graded approach, auditable safety documents, additional guidance for Hazard Classification per DOE-STD-1027-92. The emphasis in the paper is on those projects whose hazard classification is category three or less

  3. Economic Analysis of Kiva VCF Treatment System Compared to Balloon Kyphoplasty Using Randomized Kiva Safety and Effectiveness Trial (KAST) Data.

    Science.gov (United States)

    Beall, Douglas P; Olan, Wayne J; Kakad, Priyanka; Li, Qianyi; Hornberger, John

    2015-01-01

    Vertebral compression fractures (VCFs) are the most common osteoporotic fractures and cause persistent pain, kyphotic deformity, weight loss, depression, reduced quality of life, and even death. Current surgical approaches for the treatment of VCF include vertebroplasty (VP) and balloon kyphoplasty (BK). The Kiva® VCF Treatment System (Kiva System) is a next-generation alternative surgical intervention in which a percutaneously introduced nitinol Osteo Coil guidewire is advanced through a deployment cannula and subsequently a PEEK Implant is implanted incrementally and fully coiled in the vertebral body. The Kiva System's effectiveness for the treatment of VCF has been evaluated in a large randomized controlled trial, the Kiva Safety and Effectiveness Trial (KAST). The Kiva System was non-inferior to BK with respect to pain reduction (70.8% vs. 71.8% in Visual Analogue Scale) and physical function restoration (38.1 % vs. 42.2% reduction in Oswestry Disability Index) while using less bone cement. The economic impact of the Kiva system has yet to be analyzed. To analyze hospital resource use and costs of the Kiva System over 2 years for the treatment of VCF compared to BK. A representative US hospital. Economic analysis of the KAST randomized trial, focusing on hospital resource use and costs. The analysis was conducted from a hospital perspective and utilized clinical data from KAST as well as unit-cost data from the published literature. The cost of initial VCF surgery, reoperation cost, device market cost, and other medical costs were compared between the Kiva System and BK. The relative risk reduction rate in adjacent-level fracture with Kiva [31.6% (95% CI: -22.5%, 61.9%)] demonstrated in KAST was used in this analysis. With 304 vertebral augmentation procedures performed in a representative U.S. hospital over 2 years, the Kiva System will produce a direct medical cost savings of $1,118 per patient and $280,876 per hospital. This cost saving with the Kiva

  4. Regulatory analysis for the resolution of generic issue 57: Effects of Fire Protection System Actuation on Safety-Related Equipment

    International Nuclear Information System (INIS)

    Woods, H.W.

    1993-10-01

    Actuation of Fire Protection Systems (FPS) in Nuclear Power Plants have resulted in adverse interactions with equipment important to safety. Precursor operational experience has shown that 37% of all FPS actuations damaged some equipment, and 20% of all FPS actuations have resulted in a plant transient and reactor trip. On an average 0.17 FPS actuations per reactor year have been experienced in nuclear power plants in this country. This report presents the regulatory analysis for GI-57, ''Effects of Fire Protection System Actuation on Safety-Related Equipment''. The risk reduction estimates, cost/benefit analyses, and other insights gained during this effort have shown that implementation of the recommendations contained in this report can significantly reduce risk, and that these improvements can be warranted in accordance with the backfit rule, 10 CFR 50.109(a)(3). However, plant specific analyses are required in order to identify such improvements. Generic analyses can not serve to identify improvements that could be warranted for individual, specific plants. Plant specific analyses of the type needed for this purpose are underway as part of the Individual Plant Examination of External Events (IPEEE) program

  5. Safety Analysis in Large Volume Vacuum Systems Like Tokamak: Experiments and Numerical Simulation to Analyze Vacuum Ruptures Consequences

    Directory of Open Access Journals (Sweden)

    A. Malizia

    2014-01-01

    Full Text Available The large volume vacuum systems are used in many industrial operations and research laboratories. Accidents in these systems should have a relevant economical and safety impact. A loss of vacuum accident (LOVA due to a failure of the main vacuum vessel can result in a fast pressurization of the vessel and consequent mobilization dispersion of hazardous internal material through the braches. It is clear that the influence of flow fields, consequence of accidents like LOVA, on dust resuspension is a key safety issue. In order to develop this analysis an experimental facility is been developed: STARDUST. This last facility has been used to improve the knowledge about LOVA to replicate a condition more similar to appropriate operative condition like to kamaks. By the experimental data the boundary conditions have been extrapolated to give the proper input for the 2D thermofluid-dynamics numerical simulations, developed by the commercial CFD numerical code. The benchmark of numerical simulation results with the experimental ones has been used to validate and tune the 2D thermofluid-dynamics numerical model that has been developed by the authors to replicate the LOVA conditions inside STARDUST. In present work, the facility, materials, numerical model, and relevant results will be presented.

  6. Reliability analysis for the safety injection (SI) system of the Doel I - II power plant in case of a LOCA

    International Nuclear Information System (INIS)

    Meester, P. de; Poucet, A.

    1978-01-01

    An assement is made for the failure probability of the safety injection system of the Doel power plant. The SI system is composed of three subsystems: high pressure, low pressure and accumulator system. For each subsystem a fault tree is constructed and these fault trees are evaluated by a computer code which calculates the mean system failure probability and the error bounds. (author)

  7. Probabilistic safety analysis about the radiation risk for the driver in a fast-scan container/vehicle inspection system

    International Nuclear Information System (INIS)

    Li Junli; Zhu Guoping; Ming Shenjin; Cao Yanfeng

    2008-01-01

    A new Container/Vehicle Inspection System called fast-scan inspection system has been developed and used in some countries, which has a special advantage in scanning efficiency of 200 - 400 containers per hour. However, for its unique scanning mode, the fast-scan inspection system causes some worries about the radiation risk for the truck drivers, who will drive the container truck to pass through the scanning tunnel and might be exposed by the radiation beam in accidents. A PSA analysis, which has been widely used to evaluate the safety of nuclear power plant in the past, is presented here to estimate the probability of accidental exposure to the driver and evaluate the health risk. The fault tree and event tree analysis show that the probability of accidental exposure to the driver is pretty low and the main failure contributions are human errors and scanning control devices failures, which provides some recommendations for the further improvement about this product. Furthermore, on the basic of ICRP No.60 and 76 reports, the health risk to the truck driver is only about 4.0x10 -14 /a. Compared with the exempt level of 5x10 -7 /a, it can be concluded that the fast-scan system is safe enough for the truck driver. (author)

  8. Software Safety Risk in Legacy Safety-Critical Computer Systems

    Science.gov (United States)

    Hill, Janice L.; Baggs, Rhoda

    2007-01-01

    Safety Standards contain technical and process-oriented safety requirements. Technical requirements are those such as "must work" and "must not work" functions in the system. Process-Oriented requirements are software engineering and safety management process requirements. Address the system perspective and some cover just software in the system > NASA-STD-8719.13B Software Safety Standard is the current standard of interest. NASA programs/projects will have their own set of safety requirements derived from the standard. Safety Cases: a) Documented demonstration that a system complies with the specified safety requirements. b) Evidence is gathered on the integrity of the system and put forward as an argued case. [Gardener (ed.)] c) Problems occur when trying to meet safety standards, and thus make retrospective safety cases, in legacy safety-critical computer systems.

  9. Safety systems I/C reliability analysis of the Kozloduy NPP units 5 and 6; Analiz nadezhnosti KIP i sistem bezopasnosti pyatogo i shestogo bloka AEhS `Kozloduy`

    Energy Technology Data Exchange (ETDEWEB)

    Marinova, B [Risk Engineering Ltd., Sofia (Bulgaria)

    1996-12-31

    The purpose of the analysis is to assess the safety systems I/C equipment reliability of the Kozloduy-5 and the Kozloduy-6 reactors. The assessment of quantitative and qualitative effect of control systems unavailability on the safety systems unavailability is performed. The analysis is limited to the following systems: sprinkler management, low pressure emergency spray, emergency injection of boric acid, hydro accumulators, pressure compensator and compressed air. The code for probabilistic safety assessment PSAPACK has been used in analysis. Fault trees for all analysed safety systems have been constructed. Results indicates a high reliability of the safety systems management.

  10. Software safety analysis practice in installation phase

    Energy Technology Data Exchange (ETDEWEB)

    Huang, H. W.; Chen, M. H.; Shyu, S. S., E-mail: hwhwang@iner.gov.t [Institute of Nuclear Energy Research, No. 1000 Wenhua Road, Chiaan Village, Longtan Township, 32546 Taoyuan County, Taiwan (China)

    2010-10-15

    This work performed a software safety analysis in the installation phase of the Lung men nuclear power plant in Taiwan, under the cooperation of Institute of Nuclear Energy Research and Tpc. The US Nuclear Regulatory Commission requests licensee to perform software safety analysis and software verification and validation in each phase of software development life cycle with Branch Technical Position 7-14. In this work, 37 safety grade digital instrumentation and control systems were analyzed by failure mode and effects analysis, which is suggested by IEEE standard 7-4.3.2-2003. During the installation phase, skew tests for safety grade network and point to point tests were performed. The failure mode and effects analysis showed all the single failure modes can be resolved by the redundant means. Most of the common mode failures can be resolved by operator manual actions. (Author)

  11. Software safety analysis practice in installation phase

    International Nuclear Information System (INIS)

    Huang, H. W.; Chen, M. H.; Shyu, S. S.

    2010-10-01

    This work performed a software safety analysis in the installation phase of the Lung men nuclear power plant in Taiwan, under the cooperation of Institute of Nuclear Energy Research and Tpc. The US Nuclear Regulatory Commission requests licensee to perform software safety analysis and software verification and validation in each phase of software development life cycle with Branch Technical Position 7-14. In this work, 37 safety grade digital instrumentation and control systems were analyzed by failure mode and effects analysis, which is suggested by IEEE standard 7-4.3.2-2003. During the installation phase, skew tests for safety grade network and point to point tests were performed. The failure mode and effects analysis showed all the single failure modes can be resolved by the redundant means. Most of the common mode failures can be resolved by operator manual actions. (Author)

  12. Implantation of a safety management system information under the ISO 27001: risk analysis information

    Directory of Open Access Journals (Sweden)

    José Gregorio Arévalo Ascanio

    2015-11-01

    Full Text Available In this article the structure of the business of the city of Ocaña is explored with the aim of expanding the information and knowledge of the main variables of the productive activity of the municipality, its entrepreneurial spirit, technological development and productive structure. For this, a descriptive research was performed to identify economic activity in its various forms and promote the implementation of administrative practices consistent with national and international references.The results allowed to establish business weaknesses, including information, which once identified are used to design spaces training, acquisition of abilities and employers management practices in consistent with the challenges of competitiveness and stay on the market.As of the results was collected information regarding technological component companies of the productive fabric of the city, for which the application of tools for the analysis of information systems is proposed using the ISO 27001: 2005, using most appropriate technologies to study organizations that protect their most important asset information: information.

  13. The arrangement of deformation monitoring project and analysis of monitoring data of a hydropower engineering safety monitoring system

    Science.gov (United States)

    Wang, Wanshun; Chen, Zhuo; Li, Xiuwen

    2018-03-01

    The safety monitoring is very important in the operation and management of water resources and hydropower projects. It is the important means to understand the dam running status, to ensure the dam safety, to safeguard people’s life and property security, and to make full use of engineering benefits. This paper introduces the arrangement of engineering safety monitoring system based on the example of a water resource control project. The monitoring results of each monitoring project are analyzed intensively to show the operating status of the monitoring system and to provide useful reference for similar projects.

  14. From Safety Analysis to Formal Specification

    DEFF Research Database (Denmark)

    Hansen, Kirsten Mark; Ravn, Anders P.; Stavridou, Victoria

    1998-01-01

    Software for safety critical systems must deal with the hazards identified bysafety analysis. This paper investigates, how the results of onesafety analysis technique, fault trees, are interpreted as software safetyrequirements to be used in the program design process. We propose thatfault tree...... analysis and program development use the samesystem model. This model is formalized in areal-time, interval logic, based on a conventional dynamic systems modelwith state evolving over time. Fault trees are interpreted astemporal formulas, and it is shown how such formulas can be usedfor deriving safety...

  15. URBAN-NET: A Network-based Infrastructure Monitoring and Analysis System for Emergency Management and Public Safety

    Energy Technology Data Exchange (ETDEWEB)

    Lee, Sangkeun (Matt) [ORNL; Chen, Liangzhe [ORNL; Duan, Sisi [ORNL; Chinthavali, Supriya [ORNL; Shankar, Mallikarjun (Arjun) [ORNL; Prakash, B. Aditya [Virginia Tech, Blacksburg, VA

    2016-01-01

    Abstract Critical Infrastructures (CIs) such as energy, water, and transportation are complex networks that are crucial for sustaining day-to-day commodity flows vital to national security, economic stability, and public safety. The nature of these CIs is such that failures caused by an extreme weather event or a man-made incident can trigger widespread cascading failures, sending ripple effects at regional or even national scales. To minimize such effects, it is critical for emergency responders to identify existing or potential vulnerabilities within CIs during such stressor events in a systematic and quantifiable manner and take appropriate mitigating actions. We present here a novel critical infrastructure monitoring and analysis system named URBAN-NET. The system includes a software stack and tools for monitoring CIs, pre-processing data, interconnecting multiple CI datasets as a heterogeneous network, identifying vulnerabilities through graph-based topological analysis, and predicting consequences based on what-if simulations along with visualization. As a proof-of-concept, we present several case studies to show the capabilities of our system. We also discuss remaining challenges and future work.

  16. Radwaste Disposal Safety Analysis

    International Nuclear Information System (INIS)

    Hwang, Yong Soo; Kang, C. H.; Lee, Y. M.; Lee, S. H.; Jeong, J. T.; Choi, J. W.; Park, S. W.; Lee, H. S.; Kim, J. H.; Jeong, M. S.

    2010-02-01

    For the purpose of evaluating annual individual doses from a potential repository disposing of radioactive wastes from the operation of the prospective advanced nuclear fuel cycle facilities in Korea, the new safety assessment approaches are developed such as PID methods. The existing KAERI FEP list was reviewed. Based on these new reference and alternative scenarios are developed along with a new code based on the Goldsim. The code based on the compartment theory can be applied to assess both normal and what if scenarios. In addition detailed studies on THRC coupling is studied. The oriental biosphere study ends with great success over the completion of code V and V with JAEA. The further development of quality assurance, in the form of the CYPRUS+ enables handy use of it for information management

  17. Ignalina Safety Analysis Group's report for the year 1998

    International Nuclear Information System (INIS)

    Uspuras, E.; Augutis, J.; Bubelis, E.; Cesna, B.; Kaliatka, A.

    1999-02-01

    Results of Ignalina NPP Safety Analysis Group's research are presented. The main fields of group's activities in 1998 were following: safety analysis of reactor's cooling system, safety analysis of accident localization system, investigation of the problem graphite - fuel channel, reactor core modelling, assistance to the regulatory body VATESI in drafting regulations and reviewing safety reports presented by Ignalina NPP during the process of licensing of unit 1

  18. Use of computational fluid dynamics codes for safety analysis of nuclear reactor systems, including containment. Summary report of a technical meeting

    International Nuclear Information System (INIS)

    2003-11-01

    Safety analysis is an important tool for justifying the safety of nuclear power plants. Typically, this type of analysis is performed by means of system computer codes with one dimensional approximation for modelling real plant systems. However, in the nuclear area there are issues for which traditional treatment using one dimensional system codes is considered inadequate for modelling local flow and heat transfer phenomena. There is therefore increasing interest in the application of three dimensional computational fluid dynamics (CFD) codes as a supplement to or in combination with system codes. There are a number of both commercial (general purpose) CFD codes as well as special codes for nuclear safety applications available. With further progress in safety analysis techniques, the increasing use of CFD codes for nuclear applications is expected. At present, the main objective with respect to CFD codes is generally to improve confidence in the available analysis tools and to achieve a more reliable approach to safety relevant issues. An exchange of views and experience can facilitate and speed up progress in the implementation of this objective. Both the International Atomic Energy Agency (IAEA) and the Nuclear Energy Agency of the Organisation for Economic Co-operation and Development (OECD/NEA) believed that it would be advantageous to provide a forum for such an exchange. Therefore, within the framework of the Working Group on the Analysis and Management of Accidents of the NEA's Committee on the Safety of Nuclear Installations, the IAEA and the NEA agreed to jointly organize the Technical Meeting on the Use of Computational Fluid Dynamics Codes for Safety Analysis of Reactor Systems, including Containment. The meeting was held in Pisa, Italy, from 11 to 14 November 2002. The publication constitutes the report of the Technical Meeting. It includes short summaries of the presentations that were made and of the discussions as well as conclusions and

  19. Safety Justification and Safety Case for Safety-critical Software in Digital Reactor Protection System

    Energy Technology Data Exchange (ETDEWEB)

    Kwon, Kee-Choon; Lee, Jang-Soo [Korea Atomic Energy Research Institute, Daejeon (Korea, Republic of); Jee, Eunkyoung [KAIST, Daejeon (Korea, Republic of)

    2016-10-15

    Nuclear safety-critical software is under strict regulatory requirements and these regulatory requirements are essential for ensuring the safety of nuclear power plants. The verification & validation (V and V) and hazard analysis of the safety-critical software are required to follow regulatory requirements through the entire software life cycle. In order to obtain a license from the regulatory body through the development and validation of safety-critical software, it is essential to meet the standards which are required by the regulatory body throughout the software development process. Generally, large amounts of documents, which demonstrate safety justification including standard compliance, V and V, hazard analysis, and vulnerability assessment activities, are submitted to the regulatory body during the licensing process. It is not easy to accurately read and evaluate the whole documentation for the development activities, implementation technology, and validation activities. The safety case methodology has been kwon a promising approach to evaluate the level and depth of the development and validation results. A safety case is a structured argument, supported by a body of evidence that provides a compelling, comprehensible, and valid case that a system is safe for a given application in a given operating environment. It is suggested to evaluate the level and depth of the results of development and validation by applying safety case methodology to achieve software safety demonstration. A lot of documents provided as evidence are connected to claim that corresponds to the topic for safety demonstration. We demonstrated a case study in which more systematic safety demonstration for the target system software is performed via safety case construction than simply listing the documents.

  20. Safety Justification and Safety Case for Safety-critical Software in Digital Reactor Protection System

    International Nuclear Information System (INIS)

    Kwon, Kee-Choon; Lee, Jang-Soo; Jee, Eunkyoung

    2016-01-01

    Nuclear safety-critical software is under strict regulatory requirements and these regulatory requirements are essential for ensuring the safety of nuclear power plants. The verification & validation (V and V) and hazard analysis of the safety-critical software are required to follow regulatory requirements through the entire software life cycle. In order to obtain a license from the regulatory body through the development and validation of safety-critical software, it is essential to meet the standards which are required by the regulatory body throughout the software development process. Generally, large amounts of documents, which demonstrate safety justification including standard compliance, V and V, hazard analysis, and vulnerability assessment activities, are submitted to the regulatory body during the licensing process. It is not easy to accurately read and evaluate the whole documentation for the development activities, implementation technology, and validation activities. The safety case methodology has been kwon a promising approach to evaluate the level and depth of the development and validation results. A safety case is a structured argument, supported by a body of evidence that provides a compelling, comprehensible, and valid case that a system is safe for a given application in a given operating environment. It is suggested to evaluate the level and depth of the results of development and validation by applying safety case methodology to achieve software safety demonstration. A lot of documents provided as evidence are connected to claim that corresponds to the topic for safety demonstration. We demonstrated a case study in which more systematic safety demonstration for the target system software is performed via safety case construction than simply listing the documents

  1. NASA System Safety Handbook. Volume 2: System Safety Concepts, Guidelines, and Implementation Examples

    Science.gov (United States)

    Dezfuli, Homayoon; Benjamin, Allan; Everett, Christopher; Feather, Martin; Rutledge, Peter; Sen, Dev; Youngblood, Robert

    2015-01-01

    This is the second of two volumes that collectively comprise the NASA System Safety Handbook. Volume 1 (NASASP-210-580) was prepared for the purpose of presenting the overall framework for System Safety and for providing the general concepts needed to implement the framework. Volume 2 provides guidance for implementing these concepts as an integral part of systems engineering and risk management. This guidance addresses the following functional areas: 1.The development of objectives that collectively define adequate safety for a system, and the safety requirements derived from these objectives that are levied on the system. 2.The conduct of system safety activities, performed to meet the safety requirements, with specific emphasis on the conduct of integrated safety analysis (ISA) as a fundamental means by which systems engineering and risk management decisions are risk-informed. 3.The development of a risk-informed safety case (RISC) at major milestone reviews to argue that the systems safety objectives are satisfied (and therefore that the system is adequately safe). 4.The evaluation of the RISC (including supporting evidence) using a defined set of evaluation criteria, to assess the veracity of the claims made therein in order to support risk acceptance decisions.

  2. Software safety analysis application in installation phase

    International Nuclear Information System (INIS)

    Huang, H. W.; Yih, S.; Wang, L. H.; Liao, B. C.; Lin, J. M.; Kao, T. M.

    2010-01-01

    This work performed a software safety analysis (SSA) in the installation phase of the Lungmen nuclear power plant (LMNPP) in Taiwan, under the cooperation of INER and TPC. The US Nuclear Regulatory Commission (USNRC) requests licensee to perform software safety analysis (SSA) and software verification and validation (SV and V) in each phase of software development life cycle with Branch Technical Position (BTP) 7-14. In this work, 37 safety grade digital instrumentation and control (I and C) systems were analyzed by Failure Mode and Effects Analysis (FMEA), which is suggested by IEEE Standard 7-4.3.2-2003. During the installation phase, skew tests for safety grade network and point to point tests were performed. The FMEA showed all the single failure modes can be resolved by the redundant means. Most of the common mode failures can be resolved by operator manual actions. (authors)

  3. Radioisotope thermoelectric generator transportation system safety analysis report for packaging. Volumes 1 and 2

    Energy Technology Data Exchange (ETDEWEB)

    Ferrell, P.C.

    1996-04-18

    This SARP describes the RTG Transportation System Package, a Type B(U) packaging system that is used to transport an RTG or similar payload. The payload, which is included in this SARP, is a generic, enveloping payload that specifically encompasses the General Purpose Heat Source (GPHS) RTG payload. The package consists of two independent containment systems mounted on a shock isolation transport skid and transported within an exclusive-use trailer.

  4. Radioisotope thermoelectric generator transportation system safety analysis report for packaging. Volumes 1 and 2

    International Nuclear Information System (INIS)

    Ferrell, P.C.

    1996-01-01

    This SARP describes the RTG Transportation System Package, a Type B(U) packaging system that is used to transport an RTG or similar payload. The payload, which is included in this SARP, is a generic, enveloping payload that specifically encompasses the General Purpose Heat Source (GPHS) RTG payload. The package consists of two independent containment systems mounted on a shock isolation transport skid and transported within an exclusive-use trailer

  5. Pre-Departure Clearance (PDC): An Analysis of Aviation Safety Reporting System Reports Concerning PDC Related Errors

    Science.gov (United States)

    Montalyo, Michael L.; Lebacqz, J. Victor (Technical Monitor)

    1994-01-01

    Airlines operating in the United States are required to operate under instrument flight rules (EFR). Typically, a clearance is issued via voice transmission from clearance delivery at the departing airport. In 1990, the Federal Aviation Administration (FAA) began deployment of the Pre-Departure Clearance (PDC) system at 30 U.S. airports. The PDC system utilizes aeronautical datalink and Aircraft Communication and Reporting System (ACARS) to transmit departure clearances directly to the pilot. An objective of the PDC system is to provide an immediate reduction in voice congestion over the clearance delivery frequency. Participating airports report that this objective has been met. However, preliminary analysis of 42 Aviation Safety Reporting System (ASRS) reports has revealed problems in PDC procedures and formatting which have caused errors in the proper execution of the clearance. It must be acknowledged that this technology, along with other advancements on the flightdeck, is adding more responsibility to the crew and increasing the opportunity for error. The present study uses these findings as a basis for further coding and analysis of an additional 82 reports obtained from an ASRS database search. These reports indicate that clearances are often amended or exceptions are added in order to accommodate local ATC facilities. However, the onboard ACARS is limited in its ability to emphasize or highlight these changes which has resulted in altitude and heading deviations along with increases in ATC workload. Furthermore, few participating airports require any type of PDC receipt confirmation. In fact, 35% of all ASRS reports dealing with PDC's include failure to acquire the PDC at all. Consequently, this study examines pilots' suggestions contained in ASRS reports in order to develop recommendations to airlines and ATC facilities to help reduce the amount of incidents that occur.

  6. Safety analysis report for the cold vacuum drying facility, phase 2, supporting installation of process systems

    International Nuclear Information System (INIS)

    Pili-Vincens, C.

    1998-01-01

    SNF Project emergencies span the spectrum of identified emergencies for SNF Project facilities, from worker injury to general emergencies with potential public impact. Facility events include fire and/or explosion, radioactive material release, chlorine gas release, hazardous material release, loss of water in the fuel basins, and loss of electrical power. Natural events include seismic events, high winds, range fires, flooding, lightning strikes, tornado, and an aircraft crash. Security contingencies include bomb threat and/or explosive device, sabotage, and hostage situation and/or armed intruder as described in DOE/RL-94-02 (DOE 1997 b). This Chapter 15.0 applies to all operations, facilities, and personnel, including subcontractors, vendors, visitors, and any non-contractor tenants in SNF Project-controlled facilities. The EPP addresses both individual and organizational graded responses to the spectrum of emergencies, which includes hypothetical accidents with very low occurrence frequencies. The planning, accomplished in the EPP and the BEPs, provides the response actions for these emergencies. This chapter links the SNF Project EPP to DOE/RL-94-02 (DOE 1997 b), which provides the link to subsequent state and local off site EPPs. Integration of these programs links potential onsite events with onsite and offsite impacts. This integration assists in mitigation and recovery and provides for protection of the health and safety of the workers, the public, and the environment

  7. Safety assessment of high consequence robotics system

    International Nuclear Information System (INIS)

    Robinson, D.G.; Atcitty, C.B.

    1996-01-01

    This paper outlines the use of a failure modes and effects analysis for the safety assessment of a robotic system being developed at Sandia National Laboratories. The robotic system, the weigh and leak check system, is to replace a manual process for weight and leakage of nuclear materials at the DOE Pantex facility. Failure modes and effects analyses were completed for the robotics process to ensure that safety goals for the systems have been met. Due to the flexible nature of the robot configuration, traditional failure modes and effects analysis (FMEA) were not applicable. In addition, the primary focus of safety assessments of robotics systems has been the protection of personnel in the immediate area. In this application, the safety analysis must account for the sensitivities of the payload as well as traditional issues. A unique variation on the classical FMEA was developed that permits an organized and quite effective tool to be used to assure that safety was adequately considered during the development of the robotic system. The fundamental aspects of the approach are outlined in the paper

  8. Safety analysis of nuclear power plants

    International Nuclear Information System (INIS)

    Selvatici, E.

    1981-01-01

    A study about the safety analysis of nuclear power plant, giving emphasis to how and why to do is presented. The utilization of the safety analysis aiming to perform the licensing requirements is discussed, and an example of the Angra 2 and 3 safety analysis is shown. Some presented tendency of the safety analysis are presented and examples are shown.(E.G.) [pt

  9. The practical implementation of integrated safety management for nuclear safety analysis and fire hazards analysis documentation

    International Nuclear Information System (INIS)

    COLLOPY, M.T.

    1999-01-01

    In 1995 Mr. Joseph DiNunno of the Defense Nuclear Facilities Safety Board issued an approach to describe the concept of an integrated safety management program which incorporates hazard and safety analysis to address a multitude of hazards affecting the public, worker, property, and the environment. Since then the U S . Department of Energy (DOE) has adopted a policy to systematically integrate safety into management and work practices at all levels so that missions can be completed while protecting the public, worker, and the environment. While the DOE and its contractors possessed a variety of processes for analyzing fire hazards at a facility, activity, and job; the outcome and assumptions of these processes have not always been consistent for similar types of hazards within the safety analysis and the fire hazard analysis. Although the safety analysis and the fire hazard analysis are driven by different DOE Orders and requirements, these analyses should not be entirely independent and their preparation should be integrated to ensure consistency of assumptions, consequences, design considerations, and other controls. Under the DOE policy to implement an integrated safety management system, identification of hazards must be evaluated and agreed upon to ensure that the public. the workers. and the environment are protected from adverse consequences. The DOE program and contractor management need a uniform, up-to-date reference with which to plan. budget, and manage nuclear programs. It is crucial that DOE understand the hazards and risks necessarily to authorize the work needed to be performed. If integrated safety management is not incorporated into the preparation of the safety analysis and the fire hazard analysis, inconsistencies between assumptions, consequences, design considerations, and controls may occur that affect safety. Furthermore, confusion created by inconsistencies may occur in the DOE process to grant authorization of the work. In accordance with

  10. Swimming pool reactor reliability and safety analysis

    International Nuclear Information System (INIS)

    Li Zhaohuan

    1997-01-01

    A reliability and safety analysis of Swimming Pool Reactor in China Institute of Atomic Energy is done by use of event/fault tree technique. The paper briefly describes the analysis model, analysis code and main results. Meanwhile it also describes the impact of unassigned operation status on safety, the estimation of effectiveness of defense tactics in maintenance against common cause failure, the effectiveness of recovering actions on the system reliability, the comparison of occurrence frequencies of the core damage by use of generic and specific data

  11. Updated safety analysis of ITER

    International Nuclear Information System (INIS)

    Taylor, Neill; Baker, Dennis; Ciattaglia, Sergio; Cortes, Pierre; Elbez-Uzan, Joelle; Iseli, Markus; Reyes, Susana; Rodriguez-Rodrigo, Lina; Rosanvallon, Sandrine; Topilski, Leonid

    2011-01-01

    An updated version of the ITER Preliminary Safety Report has been produced and submitted to the licensing authorities. It is revised and expanded in response to requests from the authorities after their review of an earlier version in 2008, to reflect enhancements in ITER safety provisions through design changes, to incorporate new and improved safety analyses and to take into account other ITER design evolution. The updated analyses show that changes to the Tokamak cooling water system design have enhanced confinement and reduced potential radiological releases as well as removing decay heat with very high reliability. New and updated accident scenario analyses, together with fire and explosion risk analyses, have shown that design provisions are sufficient to minimize the likelihood of accidents and reduce potential consequences to a very low level. Taken together, the improvements provided a stronger demonstration of the very good safety performance of the ITER design.

  12. Risk analysis and safety rationale

    International Nuclear Information System (INIS)

    Bengtsson, G.

    1989-01-01

    Decision making with respect to safety is becoming more and more complex. The risk involved must be taken into account together with numerous other factors such as the benefits, the uncertainties and the public perception. Can the decision maker be aided by some kind of system, general rules of thumb, or broader perspective on similar decisions? This question has been addressed in a joint Nordic project relating to nuclear power. Modern techniques for risk assessment and management have been studied, and parallels drawn to such areas as offshore safety and management of toxic chemicals in the environment. The report summarises the finding of 5 major technical reports which have been published in the NORD-series. The topics includes developments, uncertainties and limitations in probabilistic safety assessments, negligible risks, risk-cost trade-offs, optimisation of nuclear safety and radiation protection, and the role of risks in the decision making process. (author) 84 refs

  13. Updated safety analysis of ITER

    Energy Technology Data Exchange (ETDEWEB)

    Taylor, Neill, E-mail: neill.taylor@iter.org [ITER Organization, CS 90 046, 13067 St Paul Lez Durance Cedex (France); Baker, Dennis; Ciattaglia, Sergio; Cortes, Pierre; Elbez-Uzan, Joelle; Iseli, Markus; Reyes, Susana; Rodriguez-Rodrigo, Lina; Rosanvallon, Sandrine; Topilski, Leonid [ITER Organization, CS 90 046, 13067 St Paul Lez Durance Cedex (France)

    2011-10-15

    An updated version of the ITER Preliminary Safety Report has been produced and submitted to the licensing authorities. It is revised and expanded in response to requests from the authorities after their review of an earlier version in 2008, to reflect enhancements in ITER safety provisions through design changes, to incorporate new and improved safety analyses and to take into account other ITER design evolution. The updated analyses show that changes to the Tokamak cooling water system design have enhanced confinement and reduced potential radiological releases as well as removing decay heat with very high reliability. New and updated accident scenario analyses, together with fire and explosion risk analyses, have shown that design provisions are sufficient to minimize the likelihood of accidents and reduce potential consequences to a very low level. Taken together, the improvements provided a stronger demonstration of the very good safety performance of the ITER design.

  14. Analysis of dynamic stability and safety of reactor system by reactor simulator

    International Nuclear Information System (INIS)

    Raisic, N.

    1963-11-01

    In order to enable qualitative analysis of dynamic properties of reactors RA and RB, mathematical models of these reactors were formulated and adapted for solution on analog computer. This report contains basic assessments for creating the model and complete equations for each reactor. Model was used to analyse three possible accidents at the RA reactor and possible hypothetical accidents at the RB reactor

  15. CERN safety system monitoring - SSM

    International Nuclear Information System (INIS)

    Hakulinen, T.; Ninin, P.; Valentini, F.; Gonzalez, J.; Salatko-Petryszcze, C.

    2012-01-01

    CERN SSM (Safety System Monitoring) is a system for monitoring state-of-health of the various access and safety systems of the CERN site and accelerator infrastructure. The emphasis of SSM is on the needs of maintenance and system operation with the aim of providing an independent and reliable verification path of the basic operational parameters of each system. Included are all network-connected devices, such as PLCs (local purpose control unit), servers, panel displays, operator posts, etc. The basic monitoring engine of SSM is a freely available system-monitoring framework Zabbix, on top of which a simplified traffic-light-type web-interface has been built. The web-interface of SSM is designed to be ultra-light to facilitate access from hand-held devices over slow connections. The underlying Zabbix system offers history and notification mechanisms typical of advanced monitoring systems. (authors)

  16. Preliminary Analysis of a Steam Line Break Accident with the MARS-KS code for the SMART Design with Passive Safety Systems

    Energy Technology Data Exchange (ETDEWEB)

    Kang, Doohyuk; Ko, Yungjoo; Suh, Jaeseung [Hannam Univ., Daejeon (Korea, Republic of); Bae, Hwang; Ryu, Sunguk; Yi, Sungjae; Park, Hyunsik [Korea Atomic Energy Research Institute, Daejeon (Korea, Republic of)

    2014-05-15

    SMART has been developed by KAERI, and SMART-Standard Design Approval (SDA) was recently granted in 2012. A SMART design with Passive Safety System (PSS) features (called SMART-PSS) is being developed and added to the standard design of SMART by KAERI to improve its safety system. Active safety systems such as safety injection pumps will be replaced by a passive safety system, which is actuated only by the gravity force caused by the height difference. All tanks for the passive safety systems are higher than the injection nozzle, which is located around the reactor coolant pumps (RCPs). In this study, a preliminary analysis of the main steam line break accident (MSLB) was performed using the MARS-KS code to understand the general behavior of the SMART-PSS design and to prepare its validation test with the SMART-ITL (FESTA) facility. An anticipated accident for the main steam line break (MSLB) was performed using the MARS-KS code to understand the thermal-hydraulic behaviors of the SMART-PSS design. The preliminary analysis provides good insight into the passive safety system design features of the SMART-PSS and the thermal-hydraulic characteristics of the SMART design. The analysis results of the MSLB showed that the core water collapsed level inside the core support barrel was maintained high over the active core top level during the transient period. Therefore, the SMART-PSS design has satisfied the requirements to maintain the plant at a safe shutdown condition during 72 hours without AC power or operator action after an anticipated accident.

  17. Fire safety analysis: methodology

    International Nuclear Information System (INIS)

    Kazarians, M.

    1998-01-01

    From a review of the fires that have occurred in nuclear power plants and the results of fire risk studies that have been completed over the last 17 years, we can conclude that internal fires in nuclear power plants can be an important contributor to plant risk. Methods and data are available to quantify the fire risk. These methods and data have been subjected to a series of reviews and detailed scrutiny and have been applied to a large number of plants. There is no doubt that we do not know everything about fire and its impact on a nuclear power plants. However, this lack of knowledge or uncertainty can be quantified and can be used in the decision making process. In other words, the methods entail uncertainties and limitations that are not insurmountable and there is little or no basis for the results of a fire risk analysis fail to support a decision process

  18. Computer aided safety analysis 1989

    International Nuclear Information System (INIS)

    1990-04-01

    The meeting was conducted in a workshop style, to encourage involvement of all participants during the discussions. Forty-five (45) experts from 19 countries, plus 22 experts from the GDR participated in the meeting. A list of participants can be found at the end of this volume. Forty-two (42) papers were presented and discussed during the meeting. Additionally an open discussion was held on the possible directions of the IAEA programme on Computer Aided Safety Analysis. A summary of the conclusions of these discussions is presented in the publication. The remainder of this proceedings volume comprises the transcript of selected technical papers (22) presented in the meeting. It is the intention of the IAEA that the publication of these proceedings will extend the benefits of the discussions held during the meeting to a larger audience throughout the world. The Technical Committee/Workshop on Computer Aided Safety Analysis was organized by the IAEA in cooperation with the National Board for Safety and Radiological Protection (SAAS) of the German Democratic Republic in Berlin. The purpose of the meeting was to provide an opportunity for discussions on experiences in the use of computer codes used for safety analysis of nuclear power plants. In particular it was intended to provide a forum for exchange of information among experts using computer codes for safety analysis under the Technical Cooperation Programme on Safety of WWER Type Reactors (RER/9/004) and other experts throughout the world. A separate abstract was prepared for each of the 22 selected papers. Refs, figs tabs and pictures

  19. Validation of the Continuous-Energy Monte Carlo Criticality-Safety Analysis System MVP and JENDL-3.2 Using the Internationally Evaluated Criticality Benchmarks

    International Nuclear Information System (INIS)

    Mitake, Susumu

    2003-01-01

    Validation of the continuous-energy Monte Carlo criticality-safety analysis system, comprising the MVP code and neutron cross sections based on JENDL-3.2, was examined using benchmarks evaluated in the 'International Handbook of Evaluated Criticality Safety Benchmark Experiments'. Eight experiments (116 configurations) for the plutonium solution and plutonium-uranium mixture systems performed at Valduc, Battelle Pacific Northwest Laboratories, and other facilities were selected and used in the studies. The averaged multiplication factors calculated with MVP and MCNP-4B using the same neutron cross-section libraries based on JENDL-3.2 were in good agreement. Based on methods provided in the Japanese nuclear criticality-safety handbook, the estimated criticality lower-limit multiplication factors to be used as a subcriticality criterion for the criticality-safety evaluation of nuclear facilities were obtained. The analysis proved the applicability of the MVP code to the criticality-safety analysis of nuclear fuel facilities, particularly to the analysis of systems fueled with plutonium and in homogeneous and thermal-energy conditions

  20. Application of Software Safety Analysis Methods

    International Nuclear Information System (INIS)

    Park, G. Y.; Hur, S.; Cheon, S. W.; Kim, D. H.; Lee, D. Y.; Kwon, K. C.; Lee, S. J.; Koo, Y. H.

    2009-01-01

    A fully digitalized reactor protection system, which is called the IDiPS-RPS, was developed through the KNICS project. The IDiPS-RPS has four redundant and separated channels. Each channel is mainly composed of a group of bistable processors which redundantly compare process variables with their corresponding setpoints and a group of coincidence processors that generate a final trip signal when a trip condition is satisfied. Each channel also contains a test processor called the ATIP and a display and command processor called the COM. All the functions were implemented in software. During the development of the safety software, various software safety analysis methods were applied, in parallel to the verification and validation (V and V) activities, along the software development life cycle. The software safety analysis methods employed were the software hazard and operability (Software HAZOP) study, the software fault tree analysis (Software FTA), and the software failure modes and effects analysis (Software FMEA)

  1. Ecological risk analysis as a key factor in environmental safety system development in the Arctic region of the Russian Federation

    International Nuclear Information System (INIS)

    Bolsunovskaya, Y A; Bolsunovskaya, L M

    2015-01-01

    Due to specific natural and climatic conditions combined with human intervention, the Arctic is regarded as a highly sensitive region to any environmental pressures. Arctic projects require continuous environmental monitoring. This poses for the government of the Russian Federation (RF) a tremendous task concerning the formation and implementation of sustainable nature management policy within the international framework. The current article examines the basic constraints to the effective ecological safety system implementation in the Arctic region of the RF. The ecological risks and their effects which influence the sustainable development of the region were analyzed. The model of complex environmental safety system was proposed

  2. Metal food packaging design based on hazard analysis critical control point (HACCP system in canned food safety

    Directory of Open Access Journals (Sweden)

    Li Xingyi

    2016-06-01

    Full Text Available This study aims to design metal food packaging with hazard analysis critical control point (HACCP. First, theory of HACCP was introduced in detail. Taking empty cans provided by Wuxi Huapeng Food Packaging Company as an example, we studied migration of bisphenol compounds in coating of food can to food stimulant. Moreover, packaging design of luncheon meat can was taken as an example to confirm whether HACCP system could effectively control migration of phenolic substance. Results demonstrated that, coating of such empty were more likely to contain multiple bisphenol compounds such as bisphenol A (BPA, and bisphenol A diglycidyl ether (BADGE was considered as the leading bisphenol pollutant; food stimulant of different types, storage temperature and time could all impact migration of bisphenol compounds. HACCP system was proved to be effective in controlling hazards of phenolic substance in luncheon meat can and could reduce various phenolic substance indexes to an acceptable range. Therefore, HACCP can control migration of phenolic substance and recontamination of food and thus ensure food safety.

  3. Autoclave nuclear criticality safety analysis

    Energy Technology Data Exchange (ETDEWEB)

    D`Aquila, D.M. [Martin Marietta Energy Systems, Inc., Piketon, OH (United States); Tayloe, R.W. Jr. [Battelle, Columbus, OH (United States)

    1991-12-31

    Steam-heated autoclaves are used in gaseous diffusion uranium enrichment plants to heat large cylinders of UF{sub 6}. Nuclear criticality safety for these autoclaves is evaluated. To enhance criticality safety, systems are incorporated into the design of autoclaves to limit the amount of water present. These safety systems also increase the likelihood that any UF{sub 6} inadvertently released from a cylinder into an autoclave is not released to the environment. Up to 140 pounds of water can be held up in large autoclaves. This mass of water is sufficient to support a nuclear criticality when optimally combined with 125 pounds of UF{sub 6} enriched to 5 percent U{sup 235}. However, water in autoclaves is widely dispersed as condensed droplets and vapor, and is extremely unlikely to form a critical configuration with released UF{sub 6}.

  4. Operating plant safety analysis needs

    International Nuclear Information System (INIS)

    Young, M.Y.; Love, D.S.

    1992-01-01

    The primary objective for nuclear power station owners is to operate and manage their plants safely. However, there is also a need to provide economical electric power, which requires that the unit be operated as efficiently as possible, consistent with the safety requirements. The objectives cited above can be achieved through the identification and use of available margins inherent in the plant design. As a result of conservative licensing and analytical approaches taken in the past, many of these margins may be found in the safety analysis limits within which plants currently operate. Improvements in the accuracy of the safety analysis, and a more realistic treatment of plant initial and boundary conditions, can make this margin available for a variety of uses which enhance plant performance, help to reduce O and M costs, and may help to extend licensed operation. Opportunities for improvement exist in several areas in the accident analysis normally performed for Chapter 15 of the FSAR. For example, recent modifications to the ECCS rule, 10CFR50.46 and Appendix K, allow use of margins previously unavailable in the analysis of the Loss of Coolant Accident (LOCA). To take advantage of this regulatory change, new methods are being developed to analyze both the large and small break loss of coolant accident (LOCA). As this margin is used, enhancements in the analysis of other transients will become necessary. The paper discusses accident analysis methods, future development needs, and analysis margin utilization in specific accident scenarios

  5. Safety of mechanical devices. Safety of automation systems

    International Nuclear Information System (INIS)

    Pahl, G.; Schweizer, G.; Kapp, K.

    1985-01-01

    The paper deals with the classic procedures of safety engineering in the sectors mechanical engineering, electrical and energy engineering, construction and transport, medicine technology and process technology. Particular stress is laid on the safety of automation systems, control technology, protection of mechanical devices, reactor safety, mechanical constructions, transport systems, railway signalling devices, road traffic and protection at work in chemical plans. (DG) [de

  6. MSCAP [Magnet System Circuitry Analysis Program] simulations of TESPE magnet safety transients

    International Nuclear Information System (INIS)

    Herring, J.S.; Juengst, K.P.; Jones, J.L.; Kraus, H.G.

    1988-01-01

    During 1987, a series of tests were carried out on the TESPE Facility at the Institut fuer Technische Physik of the Kernforschungszentrum Karlsruhe in conjunction with the Idaho National Engineering Laboratory (INEL) to experimentally and analytically investigate arcing phenomena in high field superconducting magnets. One objective of the tests was to verify computer code simulations of the magnet system. TESPE is a six coil, NbTi, toroidal magnet set, designed to operate with 7 T and 8.3 MJ at 7000 A. The full TESPE circuit was modeled for four series of experiments: internal shorts during charge and discharge, arcs initiated by electrode separation, arcs initiated by a vaporizing wire, and arcs moving along two rails. 3 refs., 15 figs., 1 tab

  7. A market systems analysis of the U.S. Sport Utility Vehicle market considering frontal crash safety technology and policy.

    Science.gov (United States)

    Hoffenson, Steven; Frischknecht, Bart D; Papalambros, Panos Y

    2013-01-01

    Active safety features and adjustments to the New Car Assessment Program (NCAP) consumer-information crash tests have the potential to decrease the number of serious traffic injuries each year, according to previous studies. However, literature suggests that risk reductions, particularly in the automotive market, are often accompanied by adjusted consumer risk tolerance, and so these potential safety benefits may not be fully realized due to changes in consumer purchasing or driving behavior. This article approaches safety in the new vehicle market, particularly in the Sport Utility Vehicle and Crossover Utility Vehicle segments, from a market systems perspective. Crash statistics and simulations are used to predict the effects of design and policy changes on occupant crash safety, and discrete choice experiments are conducted to estimate the values consumers place on vehicle attributes. These models are combined in a market simulation that forecasts how consumers respond to the available vehicle alternatives, resulting in predictions of the market share of each vehicle and how the change in fleet mixture influences societal outcomes including injuries, fuel consumption, and firm profits. The model is tested for a scenario where active safety features are implemented across the new vehicle fleet and a scenario where the U.S. frontal NCAP test speed is modified. While results exhibit evidence of consumer risk adjustment, they support adding active safety features and lowering the NCAP frontal test speed, as these changes are predicted to improve the welfare of both firms and society. Copyright © 2012 Elsevier Ltd. All rights reserved.

  8. Safer Systems: A NextGen Aviation Safety Strategic Goal

    Science.gov (United States)

    Darr, Stephen T.; Ricks, Wendell R.; Lemos, Katherine A.

    2008-01-01

    The Joint Planning and Development Office (JPDO), is charged by Congress with developing the concepts and plans for the Next Generation Air Transportation System (NextGen). The National Aviation Safety Strategic Plan (NASSP), developed by the Safety Working Group of the JPDO, focuses on establishing the goals, objectives, and strategies needed to realize the safety objectives of the NextGen Integrated Plan. The three goal areas of the NASSP are Safer Practices, Safer Systems, and Safer Worldwide. Safer Practices emphasizes an integrated, systematic approach to safety risk management through implementation of formalized Safety Management Systems (SMS) that incorporate safety data analysis processes, and the enhancement of methods for ensuring safety is an inherent characteristic of NextGen. Safer Systems emphasizes implementation of safety-enhancing technologies, which will improve safety for human-centered interfaces and enhance the safety of airborne and ground-based systems. Safer Worldwide encourages coordinating the adoption of the safer practices and safer systems technologies, policies and procedures worldwide, such that the maximum level of safety is achieved across air transportation system boundaries. This paper introduces the NASSP and its development, and focuses on the Safer Systems elements of the NASSP, which incorporates three objectives for NextGen systems: 1) provide risk reducing system interfaces, 2) provide safety enhancements for airborne systems, and 3) provide safety enhancements for ground-based systems. The goal of this paper is to expose avionics and air traffic management system developers to NASSP objectives and Safer Systems strategies.

  9. Nuclear reactor safety system

    International Nuclear Information System (INIS)

    Sato, Takashi.

    1979-01-01

    Purpose: To allow sufficient removal of radioactive substance released in the reactor containment shell upon loss of coolants accidents thus to sufficiently decrease the exposure dose to human body. Constitution: A clean-up system is provided downstream of a heat exchanger and it is branched into a pipeway to be connected to a spray nozzle and further connected by way of a valve to a reactor container. After the end of sudden transient changes upon loss of coolants accidents, the pool water stored in the pressure suppression chamber is purified in the clean-up system and then sprayed in the dry-well by way of a spray nozzle. The sprayed water dissolves to remove water soluble radioactive substances floating in the dry-well and then returns to the pressure suppression chamber. Since radioactive substances in the dry-well can thus removed rapidly and effectively and the pool water can be reused, public hazard can also be decreased. (Horiuchi, T.)

  10. Safety analysis in subsurface repositories

    International Nuclear Information System (INIS)

    1985-06-01

    The development of mathematical models to represent the repository-geosphere-biosphere system, and the development of a structure for data acquisition, processing, and use to analyse the safety of subsurface repositories, are presented. To study the behavior of radionuclides in geosphere a laboratory to determine the hydrodynamic dispersion coefficient was constructed. (M.C.K.) [pt

  11. Uncertainty analysis of reactor safety systems with statistically correlated failure data

    International Nuclear Information System (INIS)

    Dezfuli, H.; Modarres, M.

    1985-01-01

    The probability of occurrence of the top event of a fault tree is estimated from failure probability of components that constitute the fault tree. Component failure probabilities are subject to statistical uncertainties. In addition, there are cases where the failure data are statistically correlated. Most fault tree evaluations have so far been based on uncorrelated component failure data. The subject of this paper is the description of a method of assessing the probability intervals for the top event failure probability of fault trees when component failure data are statistically correlated. To estimate the mean and variance of the top event, a second-order system moment method is presented through Taylor series expansion, which provides an alternative to the normally used Monte-Carlo method. For cases where component failure probabilities are statistically correlated, the Taylor expansion terms are treated properly. A moment matching technique is used to obtain the probability distribution function of the top event through fitting a Johnson Ssub(B) distribution. The computer program (CORRELATE) was developed to perform the calculations necessary for the implementation of the method developed. The CORRELATE code is very efficient and consumes minimal computer time. This is primarily because it does not employ the time-consuming Monte-Carlo method. (author)

  12. Safety of oral ibuprofen--analysis of data from the spontaneous reporting system in Poland.

    Science.gov (United States)

    Kuchari, Ernest; Han, Stanisław; Karłowicz-Bodalska, Katarzyna; Miśkiewicz, Katarzyna; Kutycka, Elzbieta

    2014-01-01

    Ibuprofen is a popular over-the-counter, non-steroidal anti-inflammatory medication, frequently used for the relief of fever, headaches, menstrual and other minor pains as well as a major active ingredient in numerous cold preparations. We analyzed sales volume and data obtained from the monitoring of spontaneous reports on the adverse effects of IBUM soft capsules, IBUM Forte soft capsules, and IBUM oral suspension 100 mg/5 mL collected by the manufacturer (PPF HASCO-LEK S.A. Wroclaw, Poland) and National Monitoring Center in Warszawa in the period between October 2002 and June 2012. A total of 19,644,797 units of IBUM soft capsules 200 mg, 5,678,164 units of IBUM Forte soft capsules 400 mg and 4,333,325 units of IBUM oral suspension 100 mg/5 mL (29,656,286 units altogether) produced by PPF HASCO-LEK S.A. Wrodcaw, P'oland were marketed during the period analyzed. There were 5 spontaneous reports regarding these medications registered in Poland in the period analyzed. Forms of oral ibuprofen are very safe medication rarely causing adverse effects; nevertheless, the existing spontaneous monitoring system of adverse effects in Poland is not sensitive enough to detect all adverse effects and needs improvement.

  13. Safety analysis methodology for OPR 1000

    International Nuclear Information System (INIS)

    Hwang-Yong, Jun

    2005-01-01

    Full text: Korea Electric Power Research Institute (KEPRI) has been developing inhouse safety analysis methodology based on the delicate codes available to KEPRI to overcome the problems arising from currently used vendor oriented methodologies. For the Loss of Coolant Accident (LOCA) analysis, the KREM (KEPRI Realistic Evaluation Methodology) has been developed based on the RELAP-5 code. The methodology was approved for the Westinghouse 3-loop plants by the Korean regulatory organization and the project to extent the methodology to the Optimized Power Reactor 1000 (OPR1000) has been ongoing since 2001. Also, for the Non-LOCA analysis, the KNAP (Korea Non-LOCA Analysis Package) has been developed using the UNICORN-TM code system. To demonstrate the feasibility of these codes systems and methodologies, some typical cases of the design basis accidents mentioned in the final safety analysis report (FSAR) were analyzed. (author)

  14. An advanced three-dimensional simulation system for safety analysis of gas cooled reactors

    Energy Technology Data Exchange (ETDEWEB)

    Lapins, Janis

    2016-07-01

    simulated simultaneously. TORT-TD and ATTICA{sup 3D} exchange data (power distributions or fuel and moderator temperature distribution, possibly hydrogen distribution) by means of a common interface that interpolates values that are exchanged on mutual computational grids by volumetric averaging. As verification for the proper operation of the interface, the steady state of the transient PBMR-400 benchmark was used. After obtaining a coupled steady state, the transient exercises are performed to test the proper working of the interface in time dependent cases. Here, the cold helium ingress, the total control rod withdrawal case and the total control rod ejection case were simulated and compared to results of other partakers of the benchmark. Also, the coupled system was validated for a full power temperature distribution experiment in the Chinese experimental reactor HTR-10 where good agreement could be reached with the measurements. The coupled HTR simulation system TORT-TD/ATTICA{sup 3D} was then applied for single control rod ejection cases for both the PBMR-400 and the HTR-PM. These cases require a 180 model of the reactor. As preparatory works, the control rod cross sections were adjusted to yield the same reactivity increase as the grey curtain model for the PBMR and with MCNP5 for the HTR-PM. Since there are strong shielding effects by neighbouring rods, the power increase was moderate due to strong Doppler and moderator feedbacks. For the HTR-PM, coupled calculations for water ingress cases are simulated. This also tested the whole computational sequence, i.e. steam transport into the core by ATTICA{sup 3D}, then transfer of hydrogen densities (from hydrogen or from steam) to TORT-TD via the interface, interpolation of the macroscopic cross sections which changes the power density, and the feedback to ATTICA{sup 3D}. Additionally, an anticipated transient without scram is simulated where shutdown of the reactor is achieved by the temperature feedback effects. For

  15. Issues affecting advanced passive light-water reactor safety analysis

    International Nuclear Information System (INIS)

    Beelman, R.J.; Fletcher, C.D.; Modro, S.M.

    1992-01-01

    Next generation commercial reactor designs emphasize enhanced safety through improved safety system reliability and performance by means of system simplification and reliance on immutable natural forces for system operation. Simulating the performance of these safety systems will be central to analytical safety evaluation of advanced passive reactor designs. Yet the characteristically small driving forces of these safety systems pose challenging computational problems to current thermal-hydraulic systems analysis codes. Additionally, the safety systems generally interact closely with one another, requiring accurate, integrated simulation of the nuclear steam supply system, engineered safeguards and containment. Furthermore, numerical safety analysis of these advanced passive reactor designs wig necessitate simulation of long-duration, slowly-developing transients compared with current reactor designs. The composite effects of small computational inaccuracies on induced system interactions and perturbations over long periods may well lead to predicted results which are significantly different than would otherwise be expected or might actually occur. Comparisons between the engineered safety features of competing US advanced light water reactor designs and analogous present day reactor designs are examined relative to the adequacy of existing thermal-hydraulic safety codes in predicting the mechanisms of passive safety. Areas where existing codes might require modification, extension or assessment relative to passive safety designs are identified. Conclusions concerning the applicability of these codes to advanced passive light water reactor safety analysis are presented

  16. Status of safety analysis reports

    International Nuclear Information System (INIS)

    Cserhati, A.

    1999-01-01

    The safety regulation connected to both of the Atomic Acts from 1980 and 1996 requires preparation of the Preliminary Safety Analysis Report (PSAR) as well as Final SAR (FSAR). In this respect the licensing procedure for the construction and commissioning of Paks NPP did not formally deviate from the standards applied in developed countries; this is particularly true if comparison is made with the standards applied for commissioning NPPs in the second half of the seventies. By the time the overall development of internationally accepted safety standards and some existing deficiencies of earlier SAR made necessary a general reassessment of the plant safety (AGNES project). The carried out PSR for Paks-1 and 2 also added a valuable contribution to the SAR content, however a formal update of SAR is not made yet. A Hungarian nuclear authority decree from 1997 obligates the licensee to prepare and submit a major upgrade of FSAR until the mid of 2000, after finishing the PSR for Paks-3 and 4. From this date a periodic update of FSAR is required every year. The operational license renewal affects only the PSR but not the FSAR updating. The new Nuclear Safety Code outlines the contents of PSAR and FSAR, based on US NRC Reg. Guide 1. 70. Rev. 3. Hungary by now can fulfill the upgrading of SAR without major external technical or financial help. The AGNES project covered the safety analysis chapters of SAR. It was financed mainly by the country. In the project there have been involved in limited cases as performers the VTT (Finland), Belgatom (Belgium), GRS (Germany), etc., the IVO (Finland) fulfilled tasks of an independent reviewer for safety analysis. The AGNES had certain interconnection with the similar IAEA RER safety reassessment project for WWER-440/213. The PSR for Paks-1 and 2 have been carried out by the Paks staff from the resources of the plant. During the evaluation of several parts of Paks-3 and 4 PSR documentation the authority intends to use certain

  17. Status of safety analysis reports

    Energy Technology Data Exchange (ETDEWEB)

    Cserhati, A

    1999-06-01

    The safety regulation connected to both of the Atomic Acts from 1980 and 1996 requires preparation of the Preliminary Safety Analysis Report (PSAR) as well as Final SAR (FSAR). In this respect the licensing procedure for the construction and commissioning of Paks NPP did not formally deviate from the standards applied in developed countries; this is particularly true if comparison is made with the standards applied for commissioning NPPs in the second half of the seventies. By the time the overall development of internationally accepted safety standards and some existing deficiencies of earlier SAR made necessary a general reassessment of the plant safety (AGNES project). The carried out PSR for Paks-1 and 2 also added a valuable contribution to the SAR content, however a formal update of SAR is not made yet. A Hungarian nuclear authority decree from 1997 obligates the licensee to prepare and submit a major upgrade of FSAR until the mid of 2000, after finishing the PSR for Paks-3 and 4. From this date a periodic update of FSAR is required every year. The operational license renewal affects only the PSR but not the FSAR updating. The new Nuclear Safety Code outlines the contents of PSAR and FSAR, based on US NRC Reg. Guide 1. 70. Rev. 3. Hungary by now can fulfill the upgrading of SAR without major external technical or financial help. The AGNES project covered the safety analysis chapters of SAR. It was financed mainly by the country. In the project there have been involved in limited cases as performers the VTT (Finland), Belgatom (Belgium), GRS (Germany), etc., the IVO (Finland) fulfilled tasks of an independent reviewer for safety analysis. The AGNES had certain interconnection with the similar IAEA RER safety reassessment project for WWER-440/213. The PSR for Paks-1 and 2 have been carried out by the Paks staff from the resources of the plant. During the evaluation of several parts of Paks-3 and 4 PSR documentation the authority intends to use certain

  18. Modelling safety of multistate systems with ageing components

    Energy Technology Data Exchange (ETDEWEB)

    Kołowrocki, Krzysztof; Soszyńska-Budny, Joanna [Gdynia Maritime University, Department of Mathematics ul. Morska 81-87, Gdynia 81-225 Poland (Poland)

    2016-06-08

    An innovative approach to safety analysis of multistate ageing systems is presented. Basic notions of the ageing multistate systems safety analysis are introduced. The system components and the system multistate safety functions are defined. The mean values and variances of the multistate systems lifetimes in the safety state subsets and the mean values of their lifetimes in the particular safety states are defined. The multi-state system risk function and the moment of exceeding by the system the critical safety state are introduced. Applications of the proposed multistate system safety models to the evaluation and prediction of the safty characteristics of the consecutive “m out of n: F” is presented as well.

  19. Modelling safety of multistate systems with ageing components

    International Nuclear Information System (INIS)

    Kołowrocki, Krzysztof; Soszyńska-Budny, Joanna

    2016-01-01

    An innovative approach to safety analysis of multistate ageing systems is presented. Basic notions of the ageing multistate systems safety analysis are introduced. The system components and the system multistate safety functions are defined. The mean values and variances of the multistate systems lifetimes in the safety state subsets and the mean values of their lifetimes in the particular safety states are defined. The multi-state system risk function and the moment of exceeding by the system the critical safety state are introduced. Applications of the proposed multistate system safety models to the evaluation and prediction of the safty characteristics of the consecutive “m out of n: F” is presented as well.

  20. Selection and verification of safety parameters in safety parameter display system for nuclear power plants

    International Nuclear Information System (INIS)

    Zhang Yuangfang

    1992-02-01

    The method and results for safety parameter selection and its verification in safety parameter display system of nuclear power plants are introduced. According to safety analysis, the overall safety is divided into six critical safety functions, and a certain amount of safety parameters which can represent the integrity degree of each function and the causes of change are strictly selected. The verification of safety parameter selection is carried out from the view of applying the plant emergency procedures and in the accident man oeuvres on a full scale nuclear power plant simulator

  1. Development of safety analysis technology for integral reactor

    Energy Technology Data Exchange (ETDEWEB)

    Sim, Suk K.; Song, J. H.; Chung, Y. J. and others

    1999-03-01

    Inherent safety features and safety system characteristics of the SMART integral reactor are investigated in this study. Performance and safety of the SMART conceptual design have been evaluated and confirmed through the performance and safety analyses using safety analysis system codes as well as a preliminary performance and safety analysis methodology. SMART design base events and their acceptance criteria are identified to develop a preliminary PIRT for the SMART integral reactor. Using the preliminary PIRT, a set of experimental program for the thermal hydraulic separate effect tests and the integral effect tests was developed for the thermal hydraulic model development and the system code validation. Safety characteristics as well as the safety issues of the integral reactor has been identified during the study, which will be used to resolve the safety issues and guide the regulatory criteria for the integral reactor. The results of the performance and safety analyses performed during the study were used to feedback for the SMART conceptual design. The performance and safety analysis code systems as well as the preliminary safety analysis methodology developed in this study will be validated as the SMART design evolves. The performance and safety analysis technology developed during the study will be utilized for the SMART basic design development. (author)

  2. Safety in nuclear power systems

    International Nuclear Information System (INIS)

    Myers, L.C.

    1987-05-01

    This paper discusses the issue of safety in complex energy systems and provides brief accounts of some of the most serious reactor accidents that have occurred to date. Details are also provided of Ontario Hydro's problems with Unit 2 at Pickering

  3. Firefighter Safety for PV Systems

    DEFF Research Database (Denmark)

    Mathe, Laszlo; Sera, Dezso; Spataru, Sergiu

    2015-01-01

    An important and highly discussed safety issue for photovoltaic (PV) systems is that as long as the PV panels are illuminated, a high voltage is present at the PV string terminals and cables between the string and inverters that is independent of the state of the inverter's dc disconnection switch...

  4. NASA aviation safety reporting system

    Science.gov (United States)

    1981-01-01

    Aviation safety reports that relate to loss of control in flight, problems that occur as a result of similar sounding alphanumerics, and pilot incapacitation are presented. Problems related to the go around maneuver in air carrier operations, and bulletins (and FAA responses to them) that pertain to air traffic control systems and procedures are included.

  5. Safety design guide for safety related systems for CANDU 9

    Energy Technology Data Exchange (ETDEWEB)

    Lee, Duk Su; Chang, Woo Hyun; Lee, Nam Young [Korea Atomic Energy Research Institute, Daeduk (Korea, Republic of); Wright, A.C.D. [Atomic Energy of Canada Ltd., Toronto (Canada)

    1996-03-01

    In general, two types of safety related systems and structures exist in the nuclear plant; The one is a systems and structures which perform safety functions during the normal operation of the plant, and the other is a systems and structures which perform safety functions to mitigate events caused by failure of the normally operating systems or by naturally occurring phenomena. In this safety design guide, these systems are identified in detail, and the major events for which the safety functions are required and the major safety requirements are identified in the list. As the probabilistic safety assessments are completed during the course of the project, additions or deletions to the list may be justified. 3 tabs. (Author) .new.

  6. Safety design guide for safety related systems for CANDU 9

    International Nuclear Information System (INIS)

    Lee, Duk Su; Chang, Woo Hyun; Lee, Nam Young; A. C. D. Wright

    1996-03-01

    In general, two types of safety related systems and structures exist in the nuclear plant; The one is a systems and structures which perform safety functions during the normal operation of the plant, and the other is a systems and structures which perform safety functions to mitigate events caused by failure of the normally operating systems or by naturally occurring phenomena. In this safety design guide, these systems are identified in detail, and the major events for which the safety functions are required and the major safety requirements are identified in the list. As the probabilistic safety assessments are completed during the course of the project, additions or deletions to the list may be justified. 3 tabs. (Author) .new

  7. The Daresbury personnel safety system

    International Nuclear Information System (INIS)

    Poole, D.E.; Ring, T.

    1989-01-01

    The personnel safety system designed for the SRS at Daresbury is a unified system covering the three accelerators of the source itself, the beamlines and the experimental stations. The system has also been applied to the experimental areas of the Nuclear Structure Facility, and is therefore established as a site standard. A dual guardline interlock module forms a building block for a relay based interlock system completely independent of the machine control system, although comprehensive monitoring of the system status via the control system computer is a feature. An outline of the design criteria adopted for the system is presented together with a more detailed description of the philosophy of the guardline logic and the way this is implemented in a standard modular form. The emphasis is on the design features of a modern microprocessor based variant of the original SRS system. Experience with the original system during build-up and operation of the SRS facility is described. 2 refs., 4 figs

  8. Integrated framework for dynamic safety analysis

    International Nuclear Information System (INIS)

    Kim, Tae Wan; Karanki, Durga R.

    2012-01-01

    In the conventional PSA (Probabilistic Safety Assessment), detailed plant simulations by independent thermal hydraulic (TH) codes are used in the development of accident sequence models. Typical accidents in a NPP involve complex interactions among process, safety systems, and operator actions. As independent TH codes do not have the models of operator actions and full safety systems, they cannot literally simulate the integrated and dynamic interactions of process, safety systems, and operator responses. Offline simulation with pre decided states and time delays may not model the accident sequences properly. Moreover, when stochastic variability in responses of accident models is considered, defining all the combinations for simulations will be cumbersome task. To overcome some of these limitations of conventional safety analysis approach, TH models are coupled with the stochastic models in the dynamic event tree (DET) framework, which provides flexibility to model the integrated response due to better communication as all the accident elements are in the same model. The advantages of this framework also include: Realistic modeling in dynamic scenarios, comprehensive results, integrated approach (both deterministic and probabilistic models), and support for HRA (Human Reliability Analysis)

  9. System safety education focused on industrial engineering

    Science.gov (United States)

    Johnston, W. L.; Morris, R. S.

    1971-01-01

    An educational program, designed to train students with the specific skills needed to become safety specialists, is described. The discussion concentrates on application, selection, and utilization of various system safety analytical approaches. Emphasis is also placed on the management of a system safety program, its relationship with other disciplines, and new developments and applications of system safety techniques.

  10. Food safety performance indicators to benchmark food safety output of food safety management systems.

    Science.gov (United States)

    Jacxsens, L; Uyttendaele, M; Devlieghere, F; Rovira, J; Gomez, S Oses; Luning, P A

    2010-07-31

    There is a need to measure the food safety performance in the agri-food chain without performing actual microbiological analysis. A food safety performance diagnosis, based on seven indicators and corresponding assessment grids have been developed and validated in nine European food businesses. Validation was conducted on the basis of an extensive microbiological assessment scheme (MAS). The assumption behind the food safety performance diagnosis is that food businesses which evaluate the performance of their food safety management system in a more structured way and according to very strict and specific criteria will have a better insight in their actual microbiological food safety performance, because food safety problems will be more systematically detected. The diagnosis can be a useful tool to have a first indication about the microbiological performance of a food safety management system present in a food business. Moreover, the diagnosis can be used in quantitative studies to get insight in the effect of interventions on sector or governmental level. Copyright 2010 Elsevier B.V. All rights reserved.

  11. Comparative analysis of operation and safety of subcritical nuclear systems and innovative critical reactors; Analyse comparative du fonctionnement et de la surete de systemes sous-critiques et de reacteurs critiques innovants

    Energy Technology Data Exchange (ETDEWEB)

    Bokov, P.M

    2005-05-01

    The main goal of this thesis work is to investigate the role of core subcriticality for safety enhancement of advanced nuclear systems, in particular, molten salt reactors, devoted to both energy production and waste incineration/transmutation. The inherent safety is considered as ultimate goal of this safety improvement. An attempt to apply a systematic approach for the analysis of the subcriticality contribution to inherent properties of hybrid system was performed. The results of this research prove that in many cases the subcriticality may improve radically the safety characteristics of nuclear reactors, and in some configurations it helps to reach the 'absolute' intrinsic safety. In any case, a proper choice of subcriticality level makes all analyzed transients considerably slower and monotonic. It was shown that the weakest point of the independent-source systems with respect to the intrinsic safety is thermohydraulic unprotected transients, while in the case of the coupled-source systems the excess reactivity/current insertion events remain a matter of concern. To overcome these inherent drawbacks a new principle of realization of a coupled sub-critical system (DENNY concept) is proposed. In addition, the ways to remedy some particular safety-related problems with the help of the core sub-criticality are demonstrated. A preliminary safety analysis of the fast-spectrum molten salt reactor (REBUS concept) is also carried out in this thesis work. Finally, the potential of the alternative (to spallation) neutron sources for application in hybrid systems is examined. (author)

  12. A study of digital hardware architectures for nuclear reactors protection systems applications - reliability and safety analysis methods

    International Nuclear Information System (INIS)

    Benko, Pedro Luiz

    1997-01-01

    A study of digital hardware architectures, including experience in many countries, topologies and solutions to interface circuits for protection systems of nuclear reactors is presented. Methods for developing digital systems architectures based on fault tolerant and safety requirements is proposed. Directives for assessing such conditions are suggested. Techniques and the most common tools employed in reliability, safety evaluation and modeling of hardware architectures is also presented. Markov chain modeling is used to evaluate the reliability of redundant architectures. In order to estimate software quality, several mechanisms to be used in design, specification, and validation and verification (V and V) procedures are suggested. A digital protection system architecture has been analyzed as a case study. (author)

  13. Operating experience and systems analysis at Trillo NPP: A program intended for systematic review of plant safety systems to assess design basis requirements compliance

    International Nuclear Information System (INIS)

    Vega, R. de la

    1996-01-01

    The program was defined to apply to all plant safety systems and/or systems included in plant Technical Specifications. The goal of the program was to ensure, by systematic design, construction, and commissioning review, the adequacy of safety systems, structures and components to fulfill their safety functions. Also, as a result of the program, it was established that a complete, unambiguous, systematic, design basis definition shall take place. And finally, a complete documental review of the plant design shall result from the program execution

  14. Reliability analysis of software based safety functions

    International Nuclear Information System (INIS)

    Pulkkinen, U.

    1993-05-01

    The methods applicable in the reliability analysis of software based safety functions are described in the report. Although the safety functions also include other components, the main emphasis in the report is on the reliability analysis of software. The check list type qualitative reliability analysis methods, such as failure mode and effects analysis (FMEA), are described, as well as the software fault tree analysis. The safety analysis based on the Petri nets is discussed. The most essential concepts and models of quantitative software reliability analysis are described. The most common software metrics and their combined use with software reliability models are discussed. The application of software reliability models in PSA is evaluated; it is observed that the recent software reliability models do not produce the estimates needed in PSA directly. As a result from the study some recommendations and conclusions are drawn. The need of formal methods in the analysis and development of software based systems, the applicability of qualitative reliability engineering methods in connection to PSA and the need to make more precise the requirements for software based systems and their analyses in the regulatory guides should be mentioned. (orig.). (46 refs., 13 figs., 1 tab.)

  15. How could intelligent safety transport systems enhance safety ?

    NARCIS (Netherlands)

    Wiethoff, M. Heijer, T. & Bekiaris, E.

    2017-01-01

    In Europe, many deaths and injured each years are the cost of today's road traffic. Therefore, it is wise to look for possible solutions for enhancing traffic safety. Some Advanced Driver Assistance Systems (ADAS) are expected to increase safety, but they may also evoke new safety hazards. Only

  16. Recent advances in systems safety and security

    CERN Document Server

    Stamatescu, Grigore

    2016-01-01

    This book represents a timely overview of advances in systems safety and security, based on selected, revised and extended contributions from the 2nd and 3rd editions of the International Workshop on Systems Safety and Security – IWSSS, held in 2014 and 2015, respectively, in Bucharest, Romania. It includes 14 chapters, co-authored by 34 researchers from 7 countries. The book provides an useful reference from both theoretical and applied perspectives in what concerns recent progress in this area of critical interest. Contributions, broadly grouped by core topic, address challenges related to information theoretic methods for assuring systems safety and security, cloud-based solutions, image processing approaches, distributed sensor networks and legal or risk analysis viewpoints. These are mostly accompanied by associated case studies providing additional practical value and underlying the broad relevance and impact of the field.

  17. Probabilistic safety analysis procedures guide

    International Nuclear Information System (INIS)

    Papazoglou, I.A.; Bari, R.A.; Buslik, A.J.

    1984-01-01

    A procedures guide for the performance of probabilistic safety assessment has been prepared for interim use in the Nuclear Regulatory Commission programs. The probabilistic safety assessment studies performed are intended to produce probabilistic predictive models that can be used and extended by the utilities and by NRC to sharpen the focus of inquiries into a range of tissues affecting reactor safety. This guide addresses the determination of the probability (per year) of core damage resulting from accident initiators internal to the plant and from loss of offsite electric power. The scope includes analyses of problem-solving (cognitive) human errors, a determination of importance of the various core damage accident sequences, and an explicit treatment and display of uncertainties for the key accident sequences. Ultimately, the guide will be augmented to include the plant-specific analysis of in-plant processes (i.e., containment performance) and the risk associated with external accident initiators, as consensus is developed regarding suitable methodologies in these areas. This guide provides the structure of a probabilistic safety study to be performed, and indicates what products of the study are essential for regulatory decision making. Methodology is treated in the guide only to the extent necessary to indicate the range of methods which is acceptable; ample reference is given to alternative methodologies which may be utilized in the performance of the study

  18. Comparison of methods for uncertainty analysis of nuclear-power-plant safety-system fault-tree models

    International Nuclear Information System (INIS)

    Martz, H.F.; Beckman, R.J.; Campbell, K.; Whiteman, D.E.; Booker, J.M.

    1983-04-01

    A comparative evaluation is made of several methods for propagating uncertainties in actual coupled nuclear power plant safety system faults tree models. The methods considered are Monte Carlo simulation, the method of moments, a discrete distribution method, and a bootstrap method. The Monte Carlo method is found to be superior. The sensitivity of the system unavailability distribution to the choice of basic event unavailability distribution is also investigated. The system distribution is also investigated. The system distribution is especially sensitive to the choice of symmetric versus asymmetric basic event distributions. A quick-and dirty method for estimating percentiles of the system unavailability distribution is developed. The method identifies the appropriate basic event distribution percentiles that should be used in evaluating the Boolean system equivalent expression for a given fault tree model to arrive directly at the 5th, 10th, 50th, 90th, and 95th percentiles of the system unavailability distribution

  19. Nuclear power systems: Their safety

    International Nuclear Information System (INIS)

    Myers, L.C.

    1993-01-01

    Mankind utilizes energy in many forms and from a variety of sources. Canada is one of a growing number of countries which have chosen to embrace nuclear-electric generation as a component of their energy systems. As of August 1992 there were 433 power reactors operating in 35 countries and accounting for more than 15% of the world's production of electricity. In 1992, thirteen countries derived at least 25% of their electricity from nuclear units, with France leading at nearly 70%. In the same year, Canada produced about 16% of its electricity from nuclear units. Some 68 power reactors are under construction in 16 countries, enough to expand present generating capacity by close to 20%. No human endeavour carries the guarantee of perfect safety and the question of whether or not nuclear-electric generation represents an 'acceptable' risk to society has long been vigorously debated. Until the events of late April 1986, nuclear safety had indeed been an issue for discussion, for some concern, but not for alarm. The accident at the Chernobyl reactor in the USSR has irrevocably changed all that. This disaster brought the matter of nuclear safety back into the public mind in a dramatic fashion. This paper discusses the issue of safety in complex energy systems and provides brief accounts of some of the most serious reactor accidents which have occurred to date. (author). 7 refs

  20. Radiation safety systems at the NSLS

    International Nuclear Information System (INIS)

    Dickinson, T.

    1987-04-01

    This report describes design principles that were used to establish the radiation safety systems at the National Synchrotron Light Source. The author described existing safety systems and the history of partial system failures. 1 fig

  1. Removing unreasonable conservatisms in DOE safety analysis

    International Nuclear Information System (INIS)

    BISHOP, G.E.

    1999-01-01

    While nuclear safety analyses must always be conservative, invoking excessive conservatisms does not provide additional margins of safety. Rather, beyond a fairly narrow point, conservatisms skew a facility's true safety envelope by exaggerating risks and creating unreasonable bounds on what is required for safety. The conservatism has itself become unreasonable. A thorough review of the assumptions and methodologies contained in a facility's safety analysis can provide substantial reward, reducing both construction and operational costs without compromising actual safety

  2. IAEA Safety Standards on Management Systems and Safety Culture

    International Nuclear Information System (INIS)

    Persson, Kerstin Dahlgren

    2007-01-01

    The IAEA has developed a new set of Safety Standard for applying an integrated Management System for facilities and activities. The objective of the new Safety Standards is to define requirements and provide guidance for establishing, implementing, assessing and continually improving a Management System that integrates safety, health, environmental, security, quality and economic related elements to ensure that safety is properly taken into account in all the activities of an organization. With an integrated approach to management system it is also necessary to include the aspect of culture, where the organizational culture and safety culture is seen as crucial elements of the successful implementation of this management system and the attainment of all the goals and particularly the safety goals of the organization. The IAEA has developed a set of service aimed at assisting it's Member States in establishing. Implementing, assessing and continually improving an integrated management system. (author)

  3. Reload safety analysis automation tools

    International Nuclear Information System (INIS)

    Havlůj, F.; Hejzlar, J.; Vočka, R.

    2013-01-01

    Performing core physics calculations for the sake of reload safety analysis is a very demanding and time consuming process. This process generally begins with the preparation of libraries for the core physics code using a lattice code. The next step involves creating a very large set of calculations with the core physics code. Lastly, the results of the calculations must be interpreted, correctly applying uncertainties and checking whether applicable limits are satisfied. Such a procedure requires three specialized experts. One must understand the lattice code in order to correctly calculate and interpret its results. The next expert must have a good understanding of the physics code in order to create libraries from the lattice code results and to correctly define all the calculations involved. The third expert must have a deep knowledge of the power plant and the reload safety analysis procedure in order to verify, that all the necessary calculations were performed. Such a procedure involves many steps and is very time consuming. At ÚJV Řež, a.s., we have developed a set of tools which can be used to automate and simplify the whole process of performing reload safety analysis. Our application QUADRIGA automates lattice code calculations for library preparation. It removes user interaction with the lattice code and reduces his task to defining fuel pin types, enrichments, assembly maps and operational parameters all through a very nice and user-friendly GUI. The second part in reload safety analysis calculations is done by CycleKit, a code which is linked with our core physics code ANDREA. Through CycleKit large sets of calculations with complicated interdependencies can be performed using simple and convenient notation. CycleKit automates the interaction with ANDREA, organizes all the calculations, collects the results, performs limit verification and displays the output in clickable html format. Using this set of tools for reload safety analysis simplifies

  4. Integrated therapy safety management system.

    Science.gov (United States)

    Podtschaske, Beatrice; Fuchs, Daniela; Friesdorf, Wolfgang

    2013-09-01

    The aim is to demonstrate the benefit of the medico-ergonomic approach for the redesign of clinical work systems. Based on the six layer model, a concept for an 'integrated therapy safety management' is drafted. This concept could serve as a basis to improve resilience. The concept is developed through a concept-based approach. The state of the art of safety and complexity research in human factors and ergonomics forms the basis. The findings are synthesized to a concept for 'integrated therapy safety management'. The concept is applied by way of example for the 'medication process' to demonstrate its practical implementation. The 'integrated therapy safety management' is drafted in accordance with the six layer model. This model supports a detailed description of specific work tasks, the corresponding responsibilities and related workflows at different layers by using the concept of 'bridge managers'. 'Bridge managers' anticipate potential errors and monitor the controlled system continuously. If disruptions or disturbances occur, they respond with corrective actions which ensure that no harm results and they initiate preventive measures for future procedures. The concept demonstrates that in a complex work system, the human factor is the key element and final authority to cope with the residual complexity. The expertise of the 'bridge managers' and the recursive hierarchical structure results in highly adaptive clinical work systems and increases their resilience. The medico-ergonomic approach is a highly promising way of coping with two complexities. It offers a systematic framework for comprehensive analyses of clinical work systems and promotes interdisciplinary collaboration. © 2013 The Authors. British Journal of Clinical Pharmacology © 2013 The British Pharmacological Society.

  5. Integrated therapy safety management system

    Science.gov (United States)

    Podtschaske, Beatrice; Fuchs, Daniela; Friesdorf, Wolfgang

    2013-01-01

    Aims The aim is to demonstrate the benefit of the medico-ergonomic approach for the redesign of clinical work systems. Based on the six layer model, a concept for an ‘integrated therapy safety management’ is drafted. This concept could serve as a basis to improve resilience. Methods The concept is developed through a concept-based approach. The state of the art of safety and complexity research in human factors and ergonomics forms the basis. The findings are synthesized to a concept for ‘integrated therapy safety management’. The concept is applied by way of example for the ‘medication process’ to demonstrate its practical implementation. Results The ‘integrated therapy safety management’ is drafted in accordance with the six layer model. This model supports a detailed description of specific work tasks, the corresponding responsibilities and related workflows at different layers by using the concept of ‘bridge managers’. ‘Bridge managers’ anticipate potential errors and monitor the controlled system continuously. If disruptions or disturbances occur, they respond with corrective actions which ensure that no harm results and they initiate preventive measures for future procedures. The concept demonstrates that in a complex work system, the human factor is the key element and final authority to cope with the residual complexity. The expertise of the ‘bridge managers’ and the recursive hierarchical structure results in highly adaptive clinical work systems and increases their resilience. Conclusions The medico-ergonomic approach is a highly promising way of coping with two complexities. It offers a systematic framework for comprehensive analyses of clinical work systems and promotes interdisciplinary collaboration. PMID:24007448

  6. The ATLAS Detector Safety System

    CERN Multimedia

    Helfried Burckhart; Kathy Pommes; Heidi Sandaker

    The ATLAS Detector Safety System (DSS) has the mandate to put the detector in a safe state in case an abnormal situation arises which could be potentially dangerous for the detector. It covers the CERN alarm severity levels 1 and 2, which address serious risks for the equipment. The highest level 3, which also includes danger for persons, is the responsibility of the CERN-wide system CSAM, which always triggers an intervention by the CERN fire brigade. DSS works independently from and hence complements the Detector Control System, which is the tool to operate the experiment. The DSS is organized in a Front- End (FE), which fulfills autonomously the safety functions and a Back-End (BE) for interaction and configuration. The overall layout is shown in the picture below. ATLAS DSS configuration The FE implementation is based on a redundant Programmable Logical Crate (PLC) system which is used also in industry for such safety applications. Each of the two PLCs alone, one located underground and one at the s...

  7. Waste Isolation Pilot Plant Safety Analysis Report

    International Nuclear Information System (INIS)

    1995-11-01

    The following provides a summary of the specific issues addressed in this FY-95 Annual Update as they relate to the CH TRU safety bases: Executive Summary; Site Characteristics; Principal Design and Safety Criteria; Facility Design and Operation; Hazards and Accident Analysis; Derivation of Technical Safety Requirements; Radiological and Hazardous Material Protection; Institutional Programs; Quality Assurance; and Decontamination and Decommissioning. The System Design Descriptions'' (SDDS) for the WIPP were reviewed and incorporated into Chapter 3, Principal Design and Safety Criteria and Chapter 4, Facility Design and Operation. This provides the most currently available final engineering design information on waste emplacement operations throughout the disposal phase up to the point of permanent closure. Also, the criteria which define the TRU waste to be accepted for disposal at the WIPP facility were summarized in Chapter 3 based on the WAC for the Waste Isolation Pilot Plant.'' This Safety Analysis Report (SAR) documents the safety analyses that develop and evaluate the adequacy of the Waste Isolation Pilot Plant Contact-Handled Transuranic Wastes (WIPP CH TRU) safety bases necessary to ensure the safety of workers, the public and the environment from the hazards posed by WIPP waste handling and emplacement operations during the disposal phase and hazards associated with the decommissioning and decontamination phase. The analyses of the hazards associated with the long-term (10,000 year) disposal of TRU and TRU mixed waste, and demonstration of compliance with the requirements of 40 CFR 191, Subpart B and 40 CFR 268.6 will be addressed in detail in the WIPP Final Certification Application scheduled for submittal in October 1996 (40 CFR 191) and the No-Migration Variance Petition (40 CFR 268.6) scheduled for submittal in June 1996. Section 5.4, Long-Term Waste Isolation Assessment summarizes the current status of the assessment

  8. Waste Isolation Pilot Plant Safety Analysis Report

    Energy Technology Data Exchange (ETDEWEB)

    NONE

    1995-11-01

    The following provides a summary of the specific issues addressed in this FY-95 Annual Update as they relate to the CH TRU safety bases: Executive Summary; Site Characteristics; Principal Design and Safety Criteria; Facility Design and Operation; Hazards and Accident Analysis; Derivation of Technical Safety Requirements; Radiological and Hazardous Material Protection; Institutional Programs; Quality Assurance; and Decontamination and Decommissioning. The System Design Descriptions`` (SDDS) for the WIPP were reviewed and incorporated into Chapter 3, Principal Design and Safety Criteria and Chapter 4, Facility Design and Operation. This provides the most currently available final engineering design information on waste emplacement operations throughout the disposal phase up to the point of permanent closure. Also, the criteria which define the TRU waste to be accepted for disposal at the WIPP facility were summarized in Chapter 3 based on the WAC for the Waste Isolation Pilot Plant.`` This Safety Analysis Report (SAR) documents the safety analyses that develop and evaluate the adequacy of the Waste Isolation Pilot Plant Contact-Handled Transuranic Wastes (WIPP CH TRU) safety bases necessary to ensure the safety of workers, the public and the environment from the hazards posed by WIPP waste handling and emplacement operations during the disposal phase and hazards associated with the decommissioning and decontamination phase. The analyses of the hazards associated with the long-term (10,000 year) disposal of TRU and TRU mixed waste, and demonstration of compliance with the requirements of 40 CFR 191, Subpart B and 40 CFR 268.6 will be addressed in detail in the WIPP Final Certification Application scheduled for submittal in October 1996 (40 CFR 191) and the No-Migration Variance Petition (40 CFR 268.6) scheduled for submittal in June 1996. Section 5.4, Long-Term Waste Isolation Assessment summarizes the current status of the assessment.

  9. Qualitative analysis in reliability and safety studies

    International Nuclear Information System (INIS)

    Worrell, R.B.; Burdick, G.R.

    1976-01-01

    The qualitative evaluation of system logic models is described as it pertains to assessing the reliability and safety characteristics of nuclear systems. Qualitative analysis of system logic models, i.e., models couched in an event (Boolean) algebra, is defined, and the advantages inherent in qualitative analysis are explained. Certain qualitative procedures that were developed as a part of fault-tree analysis are presented for illustration. Five fault-tree analysis computer-programs that contain a qualitative procedure for determining minimal cut sets are surveyed. For each program the minimal cut-set algorithm and limitations on its use are described. The recently developed common-cause analysis for studying the effect of common-causes of failure on system behavior is explained. This qualitative procedure does not require altering the fault tree, but does use minimal cut sets from the fault tree as part of its input. The method is applied using two different computer programs. 25 refs

  10. Survey and evaluation of inherent safety characteristics and passive safety systems for use in probabilistic safety analyses

    International Nuclear Information System (INIS)

    Wetzel, N.; Scharfe, A.

    1998-01-01

    The present report examines the possibilities and limits of a probabilistic safety analysis to evaluate passive safety systems and inherent safety characteristics. The inherent safety characteristics are based on physical principles, that together with the safety system lead to no damage. A probabilistic evaluation of the inherent safety characteristic is not made. An inventory of passive safety systems of accomplished nuclear power plant types in the Federal Republic of Germany was drawn up. The evaluation of the passive safety system in the analysis of the accomplished nuclear power plant types was examined. The analysis showed that the passive manner of working was always assumed to be successful. A probabilistic evaluation was not performed. The unavailability of the passive safety system was determined by the failure of active components which are necessary in order to activate the passive safety system. To evaluate the passive safety features in new concepts of nuclear power plants the AP600 from Westinghouse, the SBWR from General Electric and the SWR 600 from Siemens, were selected. Under these three reactor concepts, the SWR 600 is specially attractive because the safety features need no energy sources and instrumentation in this concept. First approaches for the assessment of the reliability of passively operating systems are summarized. Generally it can be established that the core melt frequency for the passive concepts AP600 and SBWR is advantageous in comparison to the probabilistic objectives from the European Pressurized Water Reactor (EPR). Under the passive concepts is the SWR 600 particularly interesting. In this concept the passive systems need no energy sources and instrumentation, and has active operational systems and active safety equipment. Siemens argues that with this concept the frequency of a core melt will be two orders of magnitude lower than for the conventional reactors. (orig.) [de

  11. Deterministic and probabilistic approach to safety analysis

    International Nuclear Information System (INIS)

    Heuser, F.W.

    1980-01-01

    The examples discussed in this paper show that reliability analysis methods fairly well can be applied in order to interpret deterministic safety criteria in quantitative terms. For further improved extension of applied reliability analysis it has turned out that the influence of operational and control systems and of component protection devices should be considered with the aid of reliability analysis methods in detail. Of course, an extension of probabilistic analysis must be accompanied by further development of the methods and a broadening of the data base. (orig.)

  12. Probabilistic safety analysis using microcomputer

    International Nuclear Information System (INIS)

    Futuro Filho, F.L.F.; Mendes, J.E.S.; Santos, M.J.P. dos

    1990-01-01

    The main steps of execution of a Probabilistic Safety Assessment (PSA) are presented in this report, as the study of the system description, construction of event trees and fault trees, and the calculation of overall unavailability of the systems. It is also presented the use of microcomputer in performing some tasks, highlightning the main characteristics of a software to perform adequately the job. A sample case of fault tree construction and calculation is presented, using the PSAPACK software, distributed by the IAEA (International Atomic Energy Agency) for training purpose. (author)

  13. Maintenance of radiation safety information system

    Energy Technology Data Exchange (ETDEWEB)

    Choi, Ho Sun [Korea Institute of Nuclear Safety, Taejon (Korea, Republic of); Park, Moon Il; Chung, Chong Kyu; Lim, Bock Soo; Kim, Hyung Uk; Chang, Kwang Il; Nam, Kwan Hyun; Cho, Hye Ryan [AD center incubation LAB, Taejon (Korea, Republic of)

    2001-12-15

    The objectives of radiation safety information system maintenance are to maintain the requirement of users, change of job process and upgrade of the system performance stably and effectively while system maintenance. We conduct the code of conduct recommended by IAEA, management of radioisotope inventory database systematically using analysis for the state of inventory database integrated in this system. This system and database will be support the regulatory guidance, rule making and information to the MOST, KINS, other regulatory related organization and general public optimizationally.

  14. Rankine bottoming cycle safety analysis. Final report

    Energy Technology Data Exchange (ETDEWEB)

    Lewandowski, G.A.

    1980-02-01

    Vector Engineering Inc. conducted a safety and hazards analysis of three Rankine Bottoming Cycle Systems in public utility applications: a Thermo Electron system using Fluorinal-85 (a mixture of 85 mole % trifluoroethanol and 15 mole % water) as the working fluid; a Sundstrand system using toluene as the working fluid; and a Mechanical Technology system using steam and Freon-II as the working fluids. The properties of the working fluids considered are flammability, toxicity, and degradation, and the risks to both plant workers and the community at large are analyzed.

  15. Plutonium finishing plant safety systems and equipment list

    International Nuclear Information System (INIS)

    Bergquist, G.G.

    1995-01-01

    The Safety Equipment List (SEL) supports Analysis Report (FSAR), WHC-SD-CP-SAR-021 and the Plutonium Finishing Plant Operational Safety Requirements (OSRs), WHC-SD-CP-OSR-010. The SEL is a breakdown and classification of all Safety Class 1, 2, and 3 equipment, components, or system at the Plutonium Finishing Plant complex

  16. 10 CFR 70.62 - Safety program and integrated safety analysis.

    Science.gov (United States)

    2010-01-01

    ...; (iv) Potential accident sequences caused by process deviations or other events internal to the... have experience in nuclear criticality safety, radiation safety, fire safety, and chemical process... this safety program; namely, process safety information, integrated safety analysis, and management...

  17. Periodic safety review of the HTR-10 safety analysis

    International Nuclear Information System (INIS)

    Chen Fubing; Zheng Yanhua; Shi Lei; Li Fu

    2015-01-01

    Designed by the Institute of Nuclear and New Energy Technology (INET) of Tsinghua University, the 10 MW High Temperature Gas-cooled Reactor-Test Module (HTR-10) is the first modular High Temperature Gas-cooled Reactor (HTGR) in China. According to the nuclear safety regulations of China, the periodic safety review (PSR) of the HTR-10 was initiated by INET after approved by the National Nuclear Safety Administration (NNSA) of China. Safety analysis of the HTR-10 is one of the key safety factors of the PSR. In this paper, the main contents in the review of safety analysis are summarized; meanwhile, the internal evaluation on the review results is presented by INET. (authors)

  18. Management analysis for special competitions based on ISO 9001:2008 Quality management systems, ISO 1400:2004 Environmental management systems and OHSAS 18001:2007 Occupational health and safety management systems

    OpenAIRE

    Alcalá Ortiz, Gabriela José

    2015-01-01

    ABSTRACT: This paper aims to analyze the managing condition of the participating projects in the competition Solar Decathlon Europe 2014, depart from that, a suitable integrated management system is proposed. The analysis was accomplished due to the design and application of a questionnaire based in ISO standards, concerning quality, environmental and health and safety management. The results showed the weakness regarding management system, this means the lack of integrated policy, inte...

  19. Transient analysis for resolving safety issues

    International Nuclear Information System (INIS)

    Chao, J.; Layman, W.

    1987-01-01

    The Nuclear Safety Analysis Center (NSAC) has a Generic Safety Analysis Program to help resolve high priority generic safety issues. This paper describes several high priority safety issues considered at NSAC and how they were resolved by transient analysis using thermal hydraulics and neutronics codes. These issues are pressurized thermal shock (PTS), anticipated transients without scram (ATWS), steam generator tube rupture (SGTR), and reactivity transients in light of the Chernobyl accident

  20. COLD-SAT feasibility study safety analysis

    Science.gov (United States)

    Mchenry, Steven T.; Yost, James M.

    1991-01-01

    The Cryogenic On-orbit Liquid Depot-Storage, Acquisition, and Transfer (COLD-SAT) satellite presents some unique safety issues. The feasibility study conducted at NASA-Lewis desired a systems safety program that would be involved from the initial design in order to eliminate and/or control the inherent hazards. Because of this, a hazards analysis method was needed that: (1) identified issues that needed to be addressed for a feasibility assessment; and (2) identified all potential hazards that would need to be controlled and/or eliminated during the detailed design phases. The developed analysis method is presented as well as the results generated for the COLD-SAT system.

  1. Failure Mode and Effect Analysis of the Application Software of the Safety-critical I and C System in APR1400

    Energy Technology Data Exchange (ETDEWEB)

    Kim, Koheun; Kim, Yong geul; Choi, Woong seok; Sohn, Se do [KEPCO Engineering and Construction, Daejeon (Korea, Republic of)

    2016-10-15

    In APR1400, the computer software hazard analysis is performed by hazard and operability analysis (HAZOP) method. Meanwhile, HAZOP has its limitation and cannot be considered better than fault tree analysis (FTA) or failure mode and effect (FMEA) analysis. HAZOP assumes that the system has been carefully studied, and all possible hazards, their effects or consequences and remedies are incorporated in the system. But incorporating every possible event in the design is impossible. In this light, this paper attempts to use FMEA method for evaluating the risk for safety-critical instrumentation and control (I and C) system software for NPP which is more practically than HAZOP. It is possible because the software failures are due to systematic faults that causing simultaneous failure in multiple division when the triggering event happens. This analysis is applied to safety-critical system of Shin-Hanul units 1 and 2 NPP, i.e., APR1400. Through SFMEA, the critical software failure modes and tasks that could result in CCF are identified and also evaluated to determine the associated risk level (e.g. high or intermediate or low) based on the failure effect. Biggest benefit from this analysis comparing with HAZOP is it can reveal the possible weak points and provide the guidance to the V and V team by helping to generate the test cases.

  2. STARS software tool for analysis of reliability and safety

    International Nuclear Information System (INIS)

    Poucet, A.; Guagnini, E.

    1989-01-01

    This paper reports on the STARS (Software Tool for the Analysis of Reliability and Safety) project aims at developing an integrated set of Computer Aided Reliability Analysis tools for the various tasks involved in systems safety and reliability analysis including hazard identification, qualitative analysis, logic model construction and evaluation. The expert system technology offers the most promising perspective for developing a Computer Aided Reliability Analysis tool. Combined with graphics and analysis capabilities, it can provide a natural engineering oriented environment for computer assisted reliability and safety modelling and analysis. For hazard identification and fault tree construction, a frame/rule based expert system is used, in which the deductive (goal driven) reasoning and the heuristic, applied during manual fault tree construction, is modelled. Expert system can explain their reasoning so that the analyst can become aware of the why and the how results are being obtained. Hence, the learning aspect involved in manual reliability and safety analysis can be maintained and improved

  3. Light-water reactor safety analysis codes

    International Nuclear Information System (INIS)

    Jackson, J.F.; Ransom, V.H.; Ybarrondo, L.J.; Liles, D.R.

    1980-01-01

    A brief review of the evolution of light-water reactor safety analysis codes is presented. Included is a summary comparison of the technical capabilities of major system codes. Three recent codes are described in more detail to serve as examples of currently used techniques. Example comparisons between calculated results using these codes and experimental data are given. Finally, a brief evaluation of current code capability and future development trends is presented

  4. Semiquantitative analysis of gaps in microbiological performance of fish processing sector implementing current food safety management systems: a case study.

    Science.gov (United States)

    Onjong, Hillary Adawo; Wangoh, John; Njage, Patrick Murigu Kamau

    2014-08-01

    Fish processing plants still face microbial food safety-related product rejections and the associated economic losses, although they implement legislation, with well-established quality assurance guidelines and standards. We assessed the microbial performance of core control and assurance activities of fish exporting processors to offer suggestions for improvement using a case study. A microbiological assessment scheme was used to systematically analyze microbial counts in six selected critical sampling locations (CSLs). Nine small-, medium- and large-sized companies implementing current food safety management systems (FSMS) were studied. Samples were collected three times on each occasion (n = 324). Microbial indicators representing food safety, plant and personnel hygiene, and overall microbiological performance were analyzed. Microbiological distribution and safety profile levels for the CSLs were calculated. Performance of core control and assurance activities of the FSMS was also diagnosed using an FSMS diagnostic instrument. Final fish products from 67% of the companies were within the legally accepted microbiological limits. Salmonella was absent in all CSLs. Hands or gloves of workers from the majority of companies were highly contaminated with Staphylococcus aureus at levels above the recommended limits. Large-sized companies performed better in Enterobacteriaceae, Escherichia coli, and S. aureus than medium- and small-sized ones in a majority of the CSLs, including receipt of raw fish material, heading and gutting, and the condition of the fish processing tables and facilities before cleaning and sanitation. Fish products of 33% (3 of 9) of the companies and handling surfaces of 22% (2 of 9) of the companies showed high variability in Enterobacteriaceae counts. High variability in total viable counts and Enterobacteriaceae was noted on fish products and handling surfaces. Specific recommendations were made in core control and assurance activities

  5. Safety analysis of control rod drive computers

    International Nuclear Information System (INIS)

    Ehrenberger, W.; Rauch, G.; Schmeil, U.; Maertz, J.; Mainka, E.U.; Nordland, O.; Gloee, G.

    1985-01-01

    The analysis of the most significant user programmes revealed no errors in these programmes. The evaluation of approximately 82 cumulated years of operation demonstrated that the operating system of the control rod positioning processor has a reliability that is sufficiently good for the tasks this computer has to fulfil. Computers can be used for safety relevant tasks. The experience gained with the control rod positioning processor confirms that computers are not less reliable than conventional instrumentation and control system for comparable tasks. The examination and evaluation of computers for safety relevant tasks can be done with programme analysis or statistical evaluation of the operating experience. Programme analysis is recommended for seldom used and well structured programmes. For programmes with a long, cumulated operating time a statistical evaluation is more advisable. The effort for examination and evaluation is not greater than the corresponding effort for conventional instrumentation and control systems. This project has also revealed that, where it is technologically sensible, process controlling computers or microprocessors can be qualified for safety relevant tasks without undue effort. (orig./HP) [de

  6. Safety analysis and synthesis using fuzzy sets and evidential reasoning

    International Nuclear Information System (INIS)

    Wang, J.; Yang, J.B.; Sen, P.

    1995-01-01

    This paper presents a new methodology for safety analysis and synthesis of a complex engineering system with a structure that is capable of being decomposed into a hierarchy of levels. In this methodology, fuzzy set theory is used to describe each failure event and an evidential reasoning approach is then employed to synthesise the information thus produced to assess the safety of the whole system. Three basic parameters--failure likelihood, consequence severity and failure consequence probability, are used to analyse a failure event. These three parameters are described by linguistic variables which are characterised by a membership function to the defined categories. As safety can also be clearly described by linguistic variables referred to as the safety expressions, the obtained fuzzy safety score can be mapped back to the safety expressions which are characterised by membership functions over the same categories. This mapping results in the identification of the safety of each failure event in terms of the degree to which the fuzzy safety score belongs to each of the safety expressions. Such degrees represent the uncertainty in safety evaluations and can be synthesised using an evidential reasoning approach so that the safety of the whole system can be evaluated in terms of these safety expressions. Finally, a practical engineering example is presented to demonstrate the proposed safety analysis and synthesis methodology

  7. Safety performance monitoring of autonomous marine systems

    International Nuclear Information System (INIS)

    Thieme, Christoph A.; Utne, Ingrid B.

    2017-01-01

    The marine environment is vast, harsh, and challenging. Unanticipated faults and events might lead to loss of vessels, transported goods, collected scientific data, and business reputation. Hence, systems have to be in place that monitor the safety performance of operation and indicate if it drifts into an intolerable safety level. This article proposes a process for developing safety indicators for the operation of autonomous marine systems (AMS). The condition of safety barriers and resilience engineering form the basis for the development of safety indicators, synthesizing and further adjusting the dual assurance and the resilience based early warning indicator (REWI) approaches. The article locates the process for developing safety indicators in the system life cycle emphasizing a timely implementation of the safety indicators. The resulting safety indicators reflect safety in AMS operation and can assist in planning of operations, in daily operational decision-making, and identification of improvements. Operation of an autonomous underwater vehicle (AUV) exemplifies the process for developing safety indicators and their implementation. The case study shows that the proposed process leads to a comprehensive set of safety indicators. It is expected that application of the resulting safety indicators consequently will contribute to safer operation of current and future AMS. - Highlights: • Process for developing safety indicators for autonomous marine systems. • Safety indicators based on safety barriers and resilience thinking. • Location of the development process in the system lifecycle. • Case study on AUV demonstrating applicability of the process.

  8. Application of disturbance analysis methodology to safety related transients in the electrical systems of a nuclear power plant. Report UCLA-ENG-8056

    International Nuclear Information System (INIS)

    Guarro, S.; Okrent, D.

    1981-08-01

    The present study tries to address the question of whether or not the computerized on-line procedures known under the name of DAS (Disturbance Analysis System) can be usefully and successfully applied to provide timely diagnostics and operational suggestions during the occurrence of a major electrical transient in the auxiliary systems of a nuclear power plant. The perspective of the study is from the plant-safety point of view. A short definition of DAS methodology features and capabilities is presented. A discussion of some of the problems of a general nature that are encountered in DAS safety-oriented applications are also included. The event insufficient power on both emergency buses, with reference to a particular plant dsign (San Onofre 1), is presented. Some transients that have recently occurred in the power supply systems of operating plants are examined. Whether or not a DAS could have successfully dealt with such occurrences is considered

  9. Application of disturbance analysis methodology to safety related transients in the electrical systems of a nuclear power plant. Report UCLA-ENG-8056

    Energy Technology Data Exchange (ETDEWEB)

    Guarro, S.; Okrent, D.

    1981-08-01

    The present study tries to address the question of whether or not the computerized on-line procedures known under the name of DAS (Disturbance Analysis System) can be usefully and successfully applied to provide timely diagnostics and operational suggestions during the occurrence of a major electrical transient in the auxiliary systems of a nuclear power plant. The perspective of the study is from the plant-safety point of view. A short definition of DAS methodology features and capabilities is presented. A discussion of some of the problems of a general nature that are encountered in DAS safety-oriented applications are also included. The event insufficient power on both emergency buses, with reference to a particular plant dsign (San Onofre 1), is presented. Some transients that have recently occurred in the power supply systems of operating plants are examined. Whether or not a DAS could have successfully dealt with such occurrences is considered.

  10. Compartmentalized safety coolant injection system

    International Nuclear Information System (INIS)

    Johnson, F.T.

    1983-01-01

    A safety coolant injection system for nuclear reactors wherein a core reflood tank is provided to afford more reliable reflooding of the reactor core in the event of a break in one of the reactor coolant supply loops. Each reactor coolant supply loop is arranged in a separate compartment in the containment structure to contain and control the flow of spilled coolant so as to permit its use during emergency core cooling procedures. A spillway allows spilled coolant in the compartment to pass into the emergency water storage tank from where it can be pumped back to the reactor vessel. (author)

  11. Development and implementation of setpoint tolerances for special safety systems

    International Nuclear Information System (INIS)

    Oliva, A.F.; Balog, G.; Parkinson, D.G.; Archinoff, G.H.

    1991-01-01

    The establishment of tolerances and impairment limits for special safety system setpoints is part of the process whereby the plant operator demonstrates to the regulatory authority that the plant operates safely and within the defined plant licensing envelope. The licensing envelope represents the set of limits and plant operating state and for which acceptably safe plant operation has been demonstrated by the safety analysis. By definition, operation beyond this envelope contributes to overall safety system unavailability. Definition of the licensing envelope is provided in a wide range of documents including the plant operating licence, the safety report, and the plant operating policies and principles documents. As part of the safety analysis, limits are derived for each special safety system initiating parameter such that the relevant safety design objectives are achieved for all design basis events. If initiation on a given parameter occurs at a level beyond its limit, there is a potential reduction in safety system effectiveness relative to the performance credited in the plant safety analysis. These safety system parameter limits, when corrected for random and systematic instrument errors and other errors inherent in the process of periodic testing or calibration, are then used to derive parameter impairment levels and setpoint tolerances. This paper describes the methodology that has evolved at Ontario Hydro for developing and implementing tolerances for special safety system parameters (i.e., the shutdown systems, emergency coolant injection system and containment system). Tolerances for special safety system initiation setpoints are addressed specifically, although many of the considerations discussed here will apply to performance limits for other safety system components. The first part of the paper deals with the approach that has been adopted for defining and establishing setpoint limits and tolerances. The remainder of the paper addresses operational

  12. LFR safety approach and main ELFR safety analysis results

    International Nuclear Information System (INIS)

    Bubelis, E.; Schikorr, M.; Frogheri, M.; Mansani, L.; Bandini, G.; Burgazzi, L.; Mikityuk, K.; Zhang, Y.; Lo Frano, R.; Forgione, N.

    2013-01-01

    LFR safety approach: → A global safety approach for the LFR reference plant has been assessed and the safety analyses methodology has been developed. → LFR follows the general guidelines of the Generation IV safety concept recommendations. Thus, improved safety and higher reliability are recognized as an essential priority. → The fundamental safety objectives and the Defence-in-Depth (DiD) approach, as described by IAEA Safety Guides, have been preserved. → The recommendations of the Risk and Safety Working Group (RSWG) of GEN-IV IF has been taken into account: • safety is to be “built-in” in the fundamental design rather than “added on”; • full implementation of the Defence-in-Depth principles in a manner that is demonstrably exhaustive, progressive, tolerant, forgiving and well-balanced; • “risk-informed” approach - deterministic approach complemented with a probabilistic one; • adoption of an integrated methodology that can be used to evaluate and document the safety of Gen IV nuclear systems - ISAM. In particular the OPT tool is the fundamental methodology used throughout the design process

  13. Development of safety analysis technology for LMR

    International Nuclear Information System (INIS)

    Hahn, Do Hee; Kwon, Y. M.; Suk, S. D.

    2002-05-01

    In the present study, the KALIMER safety analysis has been made for the transients considered in the design concept, hypothetical core disruptive accident (HCDA), and containment performance with the establishment of the design basis. Such analyses have not been possible without the computer code improvement, and the experience attained during this research period must have greatly contributed to the achievement of the self reliance in the domestic technology establishment on the safety analysis areas of the conceptual design. The safety analysis codes have been improved to extend their applicable ranges for detailed conceptual design, and a basic computer code system has been established for HCDA analysis. A code-to-code comparison analysis has been performed as a part of code verification attempt, and the leading edge technology of JNC also has been brought for the technology upgrade. In addition, the research and development on the area of the database establishment has been made for the efficient and systematic project implementation of the conceptual design, through performances on the development of a project scheduling management, integration of the individually developed technology, establishment of the product database, and so on, taking into account coupling of the activities conducted in each specific area

  14. Analysis of fuel handling system for fuel bundle safety during station blackout in 500 MWe PHWR unit of India

    Energy Technology Data Exchange (ETDEWEB)

    Madhuresh, R; Nagarajan, R; Jit, I; Sanatkumar, A [Nuclear Power Corporation of India Ltd., Mumbai (India)

    1997-12-31

    Situations of Station Blackout (SBO) i.e. postulated concurrent unavailability of Class Ill and Class IV power, could arise for a long period, while on-power refuelling or other fuel handling operations are in progress with the hot irradiated fuel bundles being anywhere in the system from the Reactor Building to the Spent Fuel Storage Bay. The cooling provisions for these fuel bundles are diverse and specific to the various stages of fuel handling operations and are either on Class Ill or on Class II power with particular requirements of instrument air. Therefore, during SBO, due to the limited availability of Class II power and instrument air, it becomes difficult to maintain cooling to these fuel bundles. However, some minimal cooling is essential, to ensure the safety of the bundles. As discussed in the paper, safety of these fuel bundles in the system and/or for those lying in the liner tube region of the reactor end fitting is ensured, during SBO, by resorting to passive means like `stay-put`, `gravity- fill`, `D{sub 2}0- steaming` etc. for cooling the bundles. The paper also describes various consequences emanating from these cooling schemes. (author). 6 refs., 2 tabs., 8 figs.

  15. Analysis of fuel handling system for fuel bundle safety during station blackout in 500 MWe PHWR unit of India

    International Nuclear Information System (INIS)

    Madhuresh, R.; Nagarajan, R.; Jit, I.; Sanatkumar, A.

    1996-01-01

    Situations of Station Blackout (SBO) i.e. postulated concurrent unavailability of Class Ill and Class IV power, could arise for a long period, while on-power refuelling or other fuel handling operations are in progress with the hot irradiated fuel bundles being anywhere in the system from the Reactor Building to the Spent Fuel Storage Bay. The cooling provisions for these fuel bundles are diverse and specific to the various stages of fuel handling operations and are either on Class Ill or on Class II power with particular requirements of instrument air. Therefore, during SBO, due to the limited availability of Class II power and instrument air, it becomes difficult to maintain cooling to these fuel bundles. However, some minimal cooling is essential, to ensure the safety of the bundles. As discussed in the paper, safety of these fuel bundles in the system and/or for those lying in the liner tube region of the reactor end fitting is ensured, during SBO, by resorting to passive means like 'stay-put', 'gravity- fill', 'D 2 0- steaming' etc. for cooling the bundles. The paper also describes various consequences emanating from these cooling schemes. (author). 6 refs., 2 tabs., 8 figs

  16. Software FMEA analysis for safety-related application software

    International Nuclear Information System (INIS)

    Park, Gee-Yong; Kim, Dong Hoon; Lee, Dong Young

    2014-01-01

    Highlights: • We develop a modified FMEA analysis suited for applying to software architecture. • A template for failure modes on a specific software language is established. • A detailed-level software FMEA analysis on nuclear safety software is presented. - Abstract: A method of a software safety analysis is described in this paper for safety-related application software. The target software system is a software code installed at an Automatic Test and Interface Processor (ATIP) in a digital reactor protection system (DRPS). For the ATIP software safety analysis, at first, an overall safety or hazard analysis is performed over the software architecture and modules, and then a detailed safety analysis based on the software FMEA (Failure Modes and Effect Analysis) method is applied to the ATIP program. For an efficient analysis, the software FMEA analysis is carried out based on the so-called failure-mode template extracted from the function blocks used in the function block diagram (FBD) for the ATIP software. The software safety analysis by the software FMEA analysis, being applied to the ATIP software code, which has been integrated and passed through a very rigorous system test procedure, is proven to be able to provide very valuable results (i.e., software defects) that could not be identified during various system tests

  17. SIMMER as a safety analysis tool

    International Nuclear Information System (INIS)

    Smith, L.L.; Bell, C.R.; Bohl, W.R.; Bott, T.F.; Dearing, J.F.; Luck, L.B.

    1982-01-01

    SIMMER has been used for numerous applications in fast reactor safety, encompassing both accident and experiment analysis. Recent analyses of transition-phase behavior in potential core disruptive accidents have integrated SIMMER testing with the accident analysis. Results of both the accident analysis and the verification effort are presented as a comprehensive safety analysis program

  18. Solid waste burial grounds interim safety analysis

    International Nuclear Information System (INIS)

    Saito, G.H.

    1994-01-01

    This Interim Safety Analysis document supports the authorization basis for the interim operation and restrictions on interim operations for the near-surface land disposal of solid waste in the Solid Waste Burial Grounds. The Solid Waste Burial Grounds Interim Safety Basis supports the upgrade progress for the safety analysis report and the technical safety requirements for the operations in the Solid Waste Burial Grounds. Accident safety analysis scenarios have been analyzed based on the significant events identified in the preliminary hazards analysis. The interim safety analysis provides an evaluation of the operations in the Solid Waste Burial Grounds to determine if the radiological and hazardous material exposures will be acceptable from an overall health and safety standpoint to the worker, the onsite personnel, the public, and the environment

  19. Solid waste burial grounds interim safety analysis

    Energy Technology Data Exchange (ETDEWEB)

    Saito, G.H.

    1994-10-01

    This Interim Safety Analysis document supports the authorization basis for the interim operation and restrictions on interim operations for the near-surface land disposal of solid waste in the Solid Waste Burial Grounds. The Solid Waste Burial Grounds Interim Safety Basis supports the upgrade progress for the safety analysis report and the technical safety requirements for the operations in the Solid Waste Burial Grounds. Accident safety analysis scenarios have been analyzed based on the significant events identified in the preliminary hazards analysis. The interim safety analysis provides an evaluation of the operations in the Solid Waste Burial Grounds to determine if the radiological and hazardous material exposures will be acceptable from an overall health and safety standpoint to the worker, the onsite personnel, the public, and the environment.

  20. Monitoring System For Improving Radiation Safety Management

    International Nuclear Information System (INIS)

    Osovizky, A.; Paran, J.; Tal, N.; Ankry, N.; Ashkenazi, B.; Tirosh, D.; Marziano, R.; Chisin, R.

    1999-01-01

    Medi SMARTS (Medical Survey Mapping Automatic Radiation Tracing System), a gamma radiation monitoring system, was installed in a nuclear medicine department. In this paper the evaluation of the system's ability to improve radiation safety management is presented. The system is based on a state of the art software that continuously collects on line radiation measurements for display, analysis and logging. Radiation is measured by GM tubes; the signal is transferred to a data processing unit and then via an RS-485 communication line to a computer. The system automatically identifies the detector type and its calibration factor, thus providing compatibility, maintainability and versatility when changing detectors. Radiation levels are displayed on the nuclear medicine department map at six locations. The system has been operating continuously for more than one year, documenting abnormal events caused by routine operation or failure incidents. In cases where abnormal working conditions were encountered, an alarm message was sent automatically to the supervisor via his tele-pager. An interesting issue observed during the system evaluation, was the inability to distinguish between high radiation levels caused by proper routine operation and those caused by safety failure incidents. The solution included examination of two parameters, radiation levels as well as their duration period. A careful analysis of the historical data, applying the appropriated combined parameters determined for each location, verified that such a system can identify abnormal events, provide alarms to warn in case of incidents and improve standard operating procedures

  1. RDS; A systematic approach towards system thermal hydraulics input code development for a comprehensive deterministic safety analysis

    International Nuclear Information System (INIS)

    Mohd Faiz Salim; Ridha Roslan; Mohd Rizal Mamat

    2013-01-01

    Full-text: Deterministic Safety Analysis (DSA) is one of the mandatory requirements conducted for Nuclear Power Plant licensing process, with the aim of ensuring safety compliance with relevant regulatory acceptance criteria. DSA is a technique whereby a set of conservative deterministic rules and requirements are applied for the design and operation of facilities or activities. Computer codes are normally used to assist in performing all required analysis under DSA. To ensure a comprehensive analysis, the conduct of DSA should follow a systematic approach. One of the methodologies proposed is the Standardized and Consolidated Reference Experimental (and Calculated) Database (SCRED) developed by University of Pisa. Based on this methodology, the use of Reference Data Set (RDS) as a pre-requisite reference document for developing input nodalization was proposed. This paper shall describe the application of RDS with the purpose of assessing its effectiveness. Two RDS documents were developed for an Integral Test Facility of LOBIMOD2 and associated Test A1-83. Data and information from various reports and drawings were referred in preparing the RDS. The results showed that by developing RDS, it has made possible to consolidate all relevant information in one single document. This is beneficial as it enables preservation of information, promotes quality assurance, allows traceability, facilitates continuous improvement, promotes solving of contradictions and finally assisting in developing thermal hydraulic input regardless of whichever code selected. However, some disadvantages were also recognized such as the need for experience in making engineering judgments, language barrier in accessing foreign information and limitation of resources. Some possible improvements are suggested to overcome these challenges. (author)

  2. RDS - A systematic approach towards system thermal hydraulics input code development for a comprehensive deterministic safety analysis

    International Nuclear Information System (INIS)

    Salim, Mohd Faiz; Roslan, Ridha; Ibrahim, Mohd Rizal Mamat

    2014-01-01

    Deterministic Safety Analysis (DSA) is one of the mandatory requirements conducted for Nuclear Power Plant licensing process, with the aim of ensuring safety compliance with relevant regulatory acceptance criteria. DSA is a technique whereby a set of conservative deterministic rules and requirements are applied for the design and operation of facilities or activities. Computer codes are normally used to assist in performing all required analysis under DSA. To ensure a comprehensive analysis, the conduct of DSA should follow a systematic approach. One of the methodologies proposed is the Standardized and Consolidated Reference Experimental (and Calculated) Database (SCRED) developed by University of Pisa. Based on this methodology, the use of Reference Data Set (RDS) as a pre-requisite reference document for developing input nodalization was proposed. This paper shall describe the application of RDS with the purpose of assessing its effectiveness. Two RDS documents were developed for an Integral Test Facility of LOBI-MOD2 and associated Test A1-83. Data and information from various reports and drawings were referred in preparing the RDS. The results showed that by developing RDS, it has made possible to consolidate all relevant information in one single document. This is beneficial as it enables preservation of information, promotes quality assurance, allows traceability, facilitates continuous improvement, promotes solving of contradictions and finally assisting in developing thermal hydraulic input regardless of whichever code selected. However, some disadvantages were also recognized such as the need for experience in making engineering judgments, language barrier in accessing foreign information and limitation of resources. Some possible improvements are suggested to overcome these challenges

  3. RDS - A systematic approach towards system thermal hydraulics input code development for a comprehensive deterministic safety analysis

    Energy Technology Data Exchange (ETDEWEB)

    Salim, Mohd Faiz, E-mail: mohdfaizs@tnb.com.my [Nuclear Energy Department, Tenaga Nasional Berhad, Level 32, Dua Sentral, 50470 Kuala Lumpur (Malaysia); Roslan, Ridha [Nuclear Installation Division, Atomic Energy Licensing Board, Batu 24, Jalan Dengkil, 43800 Dengkil, Selangor (Malaysia); Ibrahim, Mohd Rizal Mamat [Technical Support Division, Malaysian Nuclear Agency, Bangi, 43000 Kajang, Selangor (Malaysia)

    2014-02-12

    Deterministic Safety Analysis (DSA) is one of the mandatory requirements conducted for Nuclear Power Plant licensing process, with the aim of ensuring safety compliance with relevant regulatory acceptance criteria. DSA is a technique whereby a set of conservative deterministic rules and requirements are applied for the design and operation of facilities or activities. Computer codes are normally used to assist in performing all required analysis under DSA. To ensure a comprehensive analysis, the conduct of DSA should follow a systematic approach. One of the methodologies proposed is the Standardized and Consolidated Reference Experimental (and Calculated) Database (SCRED) developed by University of Pisa. Based on this methodology, the use of Reference Data Set (RDS) as a pre-requisite reference document for developing input nodalization was proposed. This paper shall describe the application of RDS with the purpose of assessing its effectiveness. Two RDS documents were developed for an Integral Test Facility of LOBI-MOD2 and associated Test A1-83. Data and information from various reports and drawings were referred in preparing the RDS. The results showed that by developing RDS, it has made possible to consolidate all relevant information in one single document. This is beneficial as it enables preservation of information, promotes quality assurance, allows traceability, facilitates continuous improvement, promotes solving of contradictions and finally assisting in developing thermal hydraulic input regardless of whichever code selected. However, some disadvantages were also recognized such as the need for experience in making engineering judgments, language barrier in accessing foreign information and limitation of resources. Some possible improvements are suggested to overcome these challenges.

  4. Considerations on nuclear reactor passive safety systems

    International Nuclear Information System (INIS)

    2016-01-01

    After having indicated some passive safety systems present in electronuclear reactors (control bars, safety injection system accumulators, reactor cooling after stoppage, hydrogen recombination systems), this report recalls the main characteristics of passive safety systems, and discusses the main issues associated with the assessment of new passive systems (notably to face a sustained loss of electric supply systems or of cold water source) and research axis to be developed in this respect. More precisely, the report comments the classification of safety passive systems as it is proposed by the IAEA, outlines and comments specific aspects of these systems regarding their operation and performance. The next part discusses the safety approach, the control of performance of safety passive systems, issues related to their reliability, and the expected contribution of R and D (for example: understanding of physical phenomena which have an influence of these systems, capacities of simulation of these phenomena, needs of experimentations to validate simulation codes)

  5. 77 FR 70409 - System Safety Program

    Science.gov (United States)

    2012-11-26

    ...-0060, Notice No. 2] 2130-AC31 System Safety Program AGENCY: Federal Railroad Administration (FRA... rulemaking (NPRM) published on September 7, 2012, FRA proposed regulations to require commuter and intercity passenger railroads to develop and implement a system safety program (SSP) to improve the safety of their...

  6. NASA System Safety Handbook. Volume 1; System Safety Framework and Concepts for Implementation

    Science.gov (United States)

    Dezfuli, Homayoon; Benjamin, Allan; Everett, Christopher; Smith, Curtis; Stamatelatos, Michael; Youngblood, Robert

    2011-01-01

    System safety assessment is defined in NPR 8715.3C, NASA General Safety Program Requirements as a disciplined, systematic approach to the analysis of risks resulting from hazards that can affect humans, the environment, and mission assets. Achievement of the highest practicable degree of system safety is one of NASA's highest priorities. Traditionally, system safety assessment at NASA and elsewhere has focused on the application of a set of safety analysis tools to identify safety risks and formulate effective controls.1 Familiar tools used for this purpose include various forms of hazard analyses, failure modes and effects analyses, and probabilistic safety assessment (commonly also referred to as probabilistic risk assessment (PRA)). In the past, it has been assumed that to show that a system is safe, it is sufficient to provide assurance that the process for identifying the hazards has been as comprehensive as possible and that each identified hazard has one or more associated controls. The NASA Aerospace Safety Advisory Panel (ASAP) has made several statements in its annual reports supporting a more holistic approach. In 2006, it recommended that "... a comprehensive risk assessment, communication and acceptance process be implemented to ensure that overall launch risk is considered in an integrated and consistent manner." In 2009, it advocated for "... a process for using a risk-informed design approach to produce a design that is optimally and sufficiently safe." As a rationale for the latter advocacy, it stated that "... the ASAP applauds switching to a performance-based approach because it emphasizes early risk identification to guide designs, thus enabling creative design approaches that might be more efficient, safer, or both." For purposes of this preface, it is worth mentioning three areas where the handbook emphasizes a more holistic type of thinking. First, the handbook takes the position that it is important to not just focus on risk on an individual

  7. Comprehensive Lifecycle for Assuring System Safety

    Science.gov (United States)

    Knight, John C.; Rowanhill, Jonathan C.

    2017-01-01

    CLASS is a novel approach to the enhancement of system safety in which the system safety case becomes the focus of safety engineering throughout the system lifecycle. CLASS also expands the role of the safety case across all phases of the system's lifetime, from concept formation to decommissioning. As CLASS has been developed, the concept has been generalized to a more comprehensive notion of assurance becoming the driving goal, where safety is an important special case. This report summarizes major aspects of CLASS and contains a bibliography of papers that provide additional details.

  8. An analysis on social cost benefit of city gas safety supervision system - concentrated on estimating the intended amount paid about gas safety of households using city gas

    Energy Technology Data Exchange (ETDEWEB)

    Cho, Yong Sung [Korea Energy Economics Institute, Euiwang (Korea)

    1999-04-01

    With the increase of convenient and clean gas fuel consumption, the danger of gas safety accident is also increasing. Therefore, now is the time for requiring many thoughtful concerns and cares for the prevention of gas accident. In this study, the perception of city gas end users on use of city gas was studied and the economic value of improving gas safety was estimated by examining the intended amount paid for improving safety of city gas use. Although most of city gas end-users perceive that gas use is generally safe, they are concerned about a possibility of dander of accidents happened without any notice. On the other hand, about 97% of households using city gas know checking gas safety at a minimum, but only 60% among them are implementing self-checkup. The economic benefit of improving gas safety of city gas end-users in Korea is estimated from the lowest of 121.47 billion to the highest of 317.97 billion annually. (author). 38 refs., 5 figs., 45 tabs.

  9. Development of Safety Assessment Information System (SAIS)

    Energy Technology Data Exchange (ETDEWEB)

    Park, Byung Shik; Lee, Kyung Jin; Lee, Byung Chul [FNC Tech. Co. Ltd. SNU, Seoul (Korea, Republic of); Song, Tae Young; Lee, Chang Ho [KHNP, Daejeon (Korea, Republic of)

    2007-10-15

    Many reports and documents about nuclear power plant safety analysis like a Periodic Safe Review (PSR), Periodic Safety Analysis (PSA) and Severe Accident Management Guideline (SAMG) come to be drawn up from KHNP. Since these are not arranged easy to look up, the systematic arrangement of data was necessary. The solution against hereupon is to store database, and it was developed with the name, SAIS, by FNC Tech. Co. together with NETEC KHNP. In this web program it is easy to manage (registration, search and statistics) data. And the authorized user can approach this system. This was developed, and was verified under the development environment of; - Web Server : Apache 2.2.5 - Program Language : PHP 5.2 - DBMS : Oracle 10g.

  10. Development of Safety Assessment Information System (SAIS)

    International Nuclear Information System (INIS)

    Park, Byung Shik; Lee, Kyung Jin; Lee, Byung Chul; Song, Tae Young; Lee, Chang Ho

    2007-01-01

    Many reports and documents about nuclear power plant safety analysis like a Periodic Safe Review (PSR), Periodic Safety Analysis (PSA) and Severe Accident Management Guideline (SAMG) come to be drawn up from KHNP. Since these are not arranged easy to look up, the systematic arrangement of data was necessary. The solution against hereupon is to store database, and it was developed with the name, SAIS, by FNC Tech. Co. together with NETEC KHNP. In this web program it is easy to manage (registration, search and statistics) data. And the authorized user can approach this system. This was developed, and was verified under the development environment of; - Web Server : Apache 2.2.5 - Program Language : PHP 5.2 - DBMS : Oracle 10g

  11. Improvement of the regulatory system by implementation new safety demands

    International Nuclear Information System (INIS)

    Iglesias, R.; Alfonso, C.

    1996-01-01

    The work describes in broad terms, the analysis that is being performed aiming at the adoption of a regulatory system that could meet the current safety demands, but which, at the same time, could be a general system that might allow different safety assessments to be done by making use of more specific technical standards of the technology supplier

  12. Safety Management System in Croatia Control Ltd.

    OpenAIRE

    Pavlin, Stanislav; Sorić, Vedran; Bilać, Dragan; Dimnik, Igor; Galić, Daniel

    2009-01-01

    International Civil Aviation Organization and other international aviation organizations regulate the safety in civil aviation. In the recent years the International Civil Aviation Organization has introduced the concept of the safety management system through several documents among which the most important is the 2006 Safety Management Manual. It treats the safety management system in all the segments of civil aviation, from carriers, aerodromes and air traffic control to design, constructi...

  13. Development and applications of a safety assessment system for promoting safety culture in nuclear power plants

    International Nuclear Information System (INIS)

    Takano, Ken-ichi; Hasegawa, Naoko; Hirose, Ayako; Hayase, Ken-ichi

    2004-01-01

    For past five years, CRIEPI has been continuing efforts to develop and make applications of a 'safety assessment system' which enable to measure the safety level of organization. This report describe about frame of the system, assessment results and its reliability, and relation between labor accident rate in the site and total safety index (TSI), which can be obtained by the principal factors analysis. The safety assessment in this report is based on questionnaire survey of employee. The format and concrete questionnaires were developed using existing literatures including organizational assessment tools. The tailored questionnaire format involved 124 questionnaire items. The assessment results could be considered as a well indicator of the safety level of organization, safety management, and safety awareness of employee. (author)

  14. Safety analysis - current and future regulatory challenges

    Energy Technology Data Exchange (ETDEWEB)

    Jamieson, T., E-mail: Terry.Jamieson@cnsc-ccsn.gc.ca [Canadian Nuclear Safety Commission, Ottawa, ON (Canada)

    2015-07-01

    'Full text:' The current and future regulatory challenges associated with deterministic safety analysis are reviewed, including: 1. The CNSC's and safety control areas. 2. Traditional safety analysis approach. 3. Experience gained and impact. 4. Current analysis and regulatory approaches. 5. Current status. 6. Complexity and challenges In particular, the technical, regulatory and strategic aspects of these challenges are discussed. (author)

  15. Safety analysis - current and future regulatory challenges

    International Nuclear Information System (INIS)

    Jamieson, T.

    2015-01-01

    'Full text:' The current and future regulatory challenges associated with deterministic safety analysis are reviewed, including: 1. The CNSC's and safety control areas. 2. Traditional safety analysis approach. 3. Experience gained and impact. 4. Current analysis and regulatory approaches. 5. Current status. 6. Complexity and challenges In particular, the technical, regulatory and strategic aspects of these challenges are discussed. (author)

  16. Enhancing Safety of Artificially Ventilated Patients Using Ambient Process Analysis.

    Science.gov (United States)

    Lins, Christian; Gerka, Alexander; Lüpkes, Christian; Röhrig, Rainer; Hein, Andreas

    2018-01-01

    In this paper, we present an approach for enhancing the safety of artificially ventilated patients using ambient process analysis. We propose to use an analysis system consisting of low-cost ambient sensors such as power sensor, RGB-D sensor, passage detector, and matrix infrared temperature sensor to reduce risks for artificially ventilated patients in both home and clinical environments. We describe the system concept and our implementation and show how the system can contribute to patient safety.

  17. Manpower analysis in transportation safety. Final report

    Energy Technology Data Exchange (ETDEWEB)

    Bauer, C.S.; Bowden, H.M.; Colford, C.A.; DeFilipps, P.J.; Dennis, J.D.; Ehlert, A.K.; Popkin, H.A.; Schrader, G.F.; Smith, Q.N.

    1977-05-01

    The project described provides a manpower review of national, state and local needs for safety skills, and projects future manning levels for transportation safety personnel in both the public and private sectors. Survey information revealed that there are currently approximately 121,000 persons employed directly in transportation safety occupations within the air carrier, highway and traffic safety, motor carrier, pipeline, rail carrier, and marine carrier transportation industry groups. The projected need for 1980 is over 145,000 of which over 80 percent will be in highway safety. An analysis of transportation tasks is included, and shows ten general categories about which the majority of safety activities are focused. A skills analysis shows a generally high level of educational background and several years of experience are required for most transportation safety jobs. An overall review of safety programs in the transportation industry is included, together with chapters on the individual transportation modes.

  18. 14 CFR 33.75 - Safety analysis.

    Science.gov (United States)

    2010-01-01

    ... 14 Aeronautics and Space 1 2010-01-01 2010-01-01 false Safety analysis. 33.75 Section 33.75... STANDARDS: AIRCRAFT ENGINES Design and Construction; Turbine Aircraft Engines § 33.75 Safety analysis. (a... consequences of all failures that can reasonably be expected to occur. This analysis will take into account, if...

  19. Some uncertainty results obtained by the statistical version of the KARATE code system related to core design and safety analysis

    Energy Technology Data Exchange (ETDEWEB)

    Panka, Istvan; Hegyi, Gyoergy; Maraczy, Csaba; Temesvari, Emese [Hungarian Academy of Sciences, Budapest (Hungary). Reactor Analysis Dept.

    2017-11-15

    The best-estimate KARATE code system has been widely used for core design calculations and simulations of slow transients of VVER reactors. Recently there has been an increasing need for assessing the uncertainties of such calculations by propagating the basic input uncertainties of the models through the full calculation chain. In order to determine the uncertainties of quantities of interest during the burnup, the statistical version of the KARATE code system has been elaborated. In the first part of the paper, the main features of the new code system are discussed. The applied statistical method is based on Monte-Carlo sampling of the considered input data taking into account mainly the covariance matrices of the cross sections and/or the technological uncertainties. In the second part of the paper, only the uncertainties of cross sections are considered and an equilibrium cycle related to a VVER-440 type reactor is investigated. The burnup dependence of the uncertainties of some safety related parameters (e.g. critical boron concentration, rod worth, feedback coefficients, assembly-wise radial power and burnup distribution) are discussed and compared to the recently used limits.

  20. AST-500 safety analysis experience

    Energy Technology Data Exchange (ETDEWEB)

    Falikov, A A; Bakhmetiev, A M; Kuul, V S; Samoilov, O B [OKBM, Nizhny Novgorod (Russian Federation)

    1997-09-01

    Characteristic AST-type NHR safety features and requirements are described briefly. The main approaches and results of design and beyond-design accidents analyses for the AST-500 NHR, and the results of probabilistic safety assessments are considered. It is concluded that the AST-500 possesses a high safety level in virtue of the development and realization in the design of self-protection, passivity and defence-in-depth principles. (author). 9 refs, 2 figs.

  1. Incorporation of advanced accident analysis methodology into safety analysis reports

    International Nuclear Information System (INIS)

    2003-05-01

    The IAEA Safety Guide on Safety Assessment and Verification defines that the aim of the safety analysis should be by means of appropriate analytical tools to establish and confirm the design basis for the items important to safety, and to ensure that the overall plant design is capable of meeting the prescribed and acceptable limits for radiation doses and releases for each plant condition category. Practical guidance on how to perform accident analyses of nuclear power plants (NPPs) is provided by the IAEA Safety Report on Accident Analysis for Nuclear Power Plants. The safety analyses are performed both in the form of deterministic and probabilistic analyses for NPPs. It is customary to refer to deterministic safety analyses as accident analyses. This report discusses the aspects of using the advanced accident analysis methods to carry out accident analyses in order to introduce them into the Safety Analysis Reports (SARs). In relation to the SAR, purposes of deterministic safety analysis can be further specified as (1) to demonstrate compliance with specific regulatory acceptance criteria; (2) to complement other analyses and evaluations in defining a complete set of design and operating requirements; (3) to identify and quantify limiting safety system set points and limiting conditions for operation to be used in the NPP limits and conditions; (4) to justify appropriateness of the technical solutions employed in the fulfillment of predetermined safety requirements. The essential parts of accident analyses are performed by applying sophisticated computer code packages, which have been specifically developed for this purpose. These code packages include mainly thermal-hydraulic system codes and reactor dynamics codes meant for the transient and accident analyses. There are also specific codes such as those for the containment thermal-hydraulics, for the radiological consequences and for severe accident analyses. In some cases, codes of a more general nature such

  2. Review of design criteria and safety analysis of safety class electric building for fuel test loop

    Energy Technology Data Exchange (ETDEWEB)

    Kim, J. Y.

    1998-02-01

    Steady state fuel test loop will be equipped in HANARO to obtain the development and betterment of advanced fuel and materials through the irradiation tests. HANARO fuel test loop was designed for CANDU and PWR fuel testing. Safety related system of Fuel Test Loop such as emergency cooling water system, component cooling water system, safety ventilation system, high energy line break mitigation system and remote control room was required 1E class electric supply to meet the safety operation in accordance with related code. Therefore, FTL electric building was designed to construction and install the related equipment based on seismic category I. The objective of this study is to review the design criteria and analysis the safety function of safety class electric building for fuel test loop, and this results will become guidance for the irradiation testing in future. (author). 10 refs., 6 tabs., 30 figs.

  3. Autonomous system for launch vehicle range safety

    Science.gov (United States)

    Ferrell, Bob; Haley, Sam

    2001-02-01

    The Autonomous Flight Safety System (AFSS) is a launch vehicle subsystem whose ultimate goal is an autonomous capability to assure range safety (people and valuable resources), flight personnel safety, flight assets safety (recovery of valuable vehicles and cargo), and global coverage with a dramatic simplification of range infrastructure. The AFSS is capable of determining current vehicle position and predicting the impact point with respect to flight restriction zones. Additionally, it is able to discern whether or not the launch vehicle is an immediate threat to public safety, and initiate the appropriate range safety response. These features provide for a dramatic cost reduction in range operations and improved reliability of mission success. .

  4. Analysis on safety production in coal mines Henan Province

    Institute of Scientific and Technical Information of China (English)

    KONG Liu-an; ZHANG Wen-yong

    2006-01-01

    Based on the rigorous situation of safety production in coal mines, the paper analyzed the statistical data of recent accidents indexes in Henan's coal mines. Using investigation and comparison analysis methods, a specified analysis on mining conditions, technical facility level, safety input and vocational quality of workers in Henan's coal mines was conducted. The result indicates that there have been existing such main safety production problems as weak safety management, low-level facilities, inadequate safety input and poor vocational quality and so on. Finally it proposes such reference solutions as to establish and perfect coal mining supervision and management system, to increase safety investment into techniques and facilities and to strengthen workers' safety education and introduction of more high-level professional talents.

  5. Safety design requirements for safety systems and components of JSFR

    International Nuclear Information System (INIS)

    Kubo, Shigenobu; Shimakawa, Yoshio; Yamano, Hidemasa; Kotake, Shoji

    2011-01-01

    Safety design requirements for JSFR were summarized taking the development targets of the FaCT project and design feature of JSFR into account. The related safety principle and requirements for Monju, CRBRP, PRISM, SPX, LWRs, IAEA standards, goals of GIF, basic principle of INPRO etc. were also taken into account so that the safety design requirements can be a next-generation global standard. The development targets for safety and reliability are set based on those of FaCT, namely, ensuring safety and reliability equal to future LWR and related fuel cycle facilities. In order to achieve these targets, the defence-in-depth concept is used as the basic safety design principle. General features of the safety design requirements are 1) Achievement of higher reliability, 2) Achievement of higher inspectability and maintainability, 3) Introduction of passive safety features, 4) Reduction of operator action needs, 5) Design consideration against Beyond Design Basis Events, 6) In-Vessel Retention of degraded core materials, 7) Prevention and mitigation against sodium chemical reactions, and 8) Design against external events. The current specific requirements for each system and component are summarized taking the basic design concept of JSFR into account, which is an advanced loop-type large-output power plant with a mixed-oxide-fuelled core. (author)

  6. Safety-related control air systems

    International Nuclear Information System (INIS)

    Anon.

    1977-01-01

    This Standard applies to those portions of the control air system that furnish air required to support, control, or operate systems or portions of systems that are safety related in nuclear power plants. This Standard relates only to the air supply system(s) for safety-related air operated devices and does not apply to the safety-related air operated device or to air operated actuators for such devices. The objectives of this Standard are to provide (1) minimum system design requirements for equipment, piping, instruments, controls, and wiring that constitute the air supply system; and (2) the system and component testing and maintenance requirements

  7. A philosophy for space nuclear systems safety

    International Nuclear Information System (INIS)

    Marshall, A.C.

    1992-01-01

    The unique requirements and contraints of space nuclear systems require careful consideration in the development of a safety policy. The Nuclear Safety Policy Working Group (NSPWG) for the Space Exploration Initiative has proposed a hierarchical approach with safety policy at the top of the hierarchy. This policy allows safety requirements to be tailored to specific applications while still providing reassurance to regulators and the general public that the necessary measures have been taken to assure safe application of space nuclear systems. The safety policy used by the NSPWG is recommended for all space nuclear programs and missions

  8. Qualification of safety-critical software for digital reactor safety system in nuclear power plants

    International Nuclear Information System (INIS)

    Kwon, Kee-Choon; Park, Gee-Yong; Kim, Jang-Yeol; Lee, Jang-Soo

    2013-01-01

    This paper describes the software qualification activities for the safety-critical software of the digital reactor safety system in nuclear power plants. The main activities of the software qualification processes are the preparation of software planning documentations, verification and validation (V and V) of the software requirements specifications (SRS), software design specifications (SDS) and codes, and the testing of the integrated software and integrated system. Moreover, the software safety analysis and software configuration management are involved in the software qualification processes. The V and V procedure for SRS and SDS contains a technical evaluation, licensing suitability evaluation, inspection and traceability analysis, formal verification, software safety analysis, and an evaluation of the software configuration management. The V and V processes for the code are a traceability analysis, source code inspection, test case and test procedure generation. Testing is the major V and V activity of the software integration and system integration phases. The software safety analysis employs a hazard operability method and software fault tree analysis. The software configuration management in each software life cycle is performed by the use of a nuclear software configuration management tool. Through these activities, we can achieve the functionality, performance, reliability, and safety that are the major V and V objectives of the safety-critical software in nuclear power plants. (author)

  9. Probabilistic safety criteria at the safety function/system level

    International Nuclear Information System (INIS)

    1989-09-01

    A Technical Committee Meeting was held in Vienna, Austria, from 26-30 January 1987. The objectives of the meeting were: to review the national developments of PSC at the level of safety functions/systems including future trends; to analyse basic principles, assumptions, and objectives; to compare numerical values and the rationale for choosing them; to compile the experience with use of such PSC; to analyse the role of uncertainties in particular regarding procedures for showing compliance. The general objective of establishing PSC at the level of safety functions/systems is to provide a pragmatic tool to evaluate plant safety which is placing emphasis on the prevention principle. Such criteria could thus lead to a better understanding of the importance to safety of the various functions which have to be performed to ensure the safety of the plant, and the engineering means of performing these functions. They would reflect the state-of-the-art in modern PSAs and could contribute to a balance in system design. This report, prepared by the participants of the meeting, reviews the current status and future trends in the field and should assist Member States in developing their national approaches. The draft of this document was also submitted to INSAG to be considered in its work to prepare a document on safety principles for nuclear power plants. Five papers presented at the meeting are also included in this publication. A separate abstract was prepared for each of these papers. Refs, figs and tabs

  10. Preliminary Integrated Safety Analysis Status Report

    International Nuclear Information System (INIS)

    Gwyn, D.

    2001-01-01

    This report provides the status of the potential Monitored Geologic Repository (MGR) Integrated Safety Analysis (EA) by identifying the initial work scope scheduled for completion during the ISA development period, the schedules associated with the tasks identified, safety analysis issues encountered, and a summary of accomplishments during the reporting period. This status covers the period from October 1, 2000 through March 30, 2001

  11. System theory and safety models in Swedish, UK, Dutch and Australian road safety strategies.

    Science.gov (United States)

    Hughes, B P; Anund, A; Falkmer, T

    2015-01-01

    Road safety strategies represent interventions on a complex social technical system level. An understanding of a theoretical basis and description is required for strategies to be structured and developed. Road safety strategies are described as systems, but have not been related to the theory, principles and basis by which systems have been developed and analysed. Recently, road safety strategies, which have been employed for many years in different countries, have moved to a 'vision zero', or 'safe system' style. The aim of this study was to analyse the successful Swedish, United Kingdom and Dutch road safety strategies against the older, and newer, Australian road safety strategies, with respect to their foundations in system theory and safety models. Analysis of the strategies against these foundations could indicate potential improvements. The content of four modern cases of road safety strategy was compared against each other, reviewed against scientific systems theory and reviewed against types of safety model. The strategies contained substantial similarities, but were different in terms of fundamental constructs and principles, with limited theoretical basis. The results indicate that the modern strategies do not include essential aspects of systems theory that describe relationships and interdependencies between key components. The description of these strategies as systems is therefore not well founded and deserves further development. Copyright © 2014 Elsevier Ltd. All rights reserved.

  12. Approach to uncertainty evaluation for safety analysis

    International Nuclear Information System (INIS)

    Ogura, Katsunori

    2005-01-01

    Nuclear power plant safety used to be verified and confirmed through accident simulations using computer codes generally because it is very difficult to perform integrated experiments or tests for the verification and validation of the plant safety due to radioactive consequence, cost, and scaling to the actual plant. Traditionally the plant safety had been secured owing to the sufficient safety margin through the conservative assumptions and models to be applied to those simulations. Meanwhile the best-estimate analysis based on the realistic assumptions and models in support of the accumulated insights could be performed recently, inducing the reduction of safety margin in the analysis results and the increase of necessity to evaluate the reliability or uncertainty of the analysis results. This paper introduces an approach to evaluate the uncertainty of accident simulation and its results. (Note: This research had been done not in the Japan Nuclear Energy Safety Organization but in the Tokyo Institute of Technology.) (author)

  13. Safety Analysis Of Actinide Recycled Fast Power Reactor

    International Nuclear Information System (INIS)

    Taufik, Mohammad

    2001-01-01

    Simulation for safety analysis of actinide recycled fast power reactor has been performed. The objective is to know reactor response about ULOF and ULOF and UTOP simultaneous accident. From parameter result such reactivity feedback, power, temperature, and cooled flow rate can conclusion that reactor have inherent safety system, which can back to new Equilibrium State

  14. WE-G-BRA-07: Analyzing the Safety Implications of a Brachytherapy Process Improvement Project Utilizing a Novel System-Theory-Based Hazard-Analysis Technique

    Energy Technology Data Exchange (ETDEWEB)

    Tang, A; Samost, A [Massachusetts Institute of Technology, Cambridge, Massachusetts (United States); Viswanathan, A; Cormack, R; Damato, A [Dana-Farber Cancer Institute - Brigham and Women’s Hospital, Boston, MA (United States)

    2015-06-15

    Purpose: To investigate the hazards in cervical-cancer HDR brachytherapy using a novel hazard-analysis technique, System Theoretic Process Analysis (STPA). The applicability and benefit of STPA to the field of radiation oncology is demonstrated. Methods: We analyzed the tandem and ring HDR procedure through observations, discussions with physicists and physicians, and the use of a previously developed process map. Controllers and their respective control actions were identified and arranged into a hierarchical control model of the system, modeling the workflow from applicator insertion through initiating treatment delivery. We then used the STPA process to identify potentially unsafe control actions. Scenarios were then generated from the identified unsafe control actions and used to develop recommendations for system safety constraints. Results: 10 controllers were identified and included in the final model. From these controllers 32 potentially unsafe control actions were identified, leading to more than 120 potential accident scenarios, including both clinical errors (e.g., using outdated imaging studies for planning), and managerial-based incidents (e.g., unsafe equipment, budget, or staffing decisions). Constraints identified from those scenarios include common themes, such as the need for appropriate feedback to give the controllers an adequate mental model to maintain safe boundaries of operations. As an example, one finding was that the likelihood of the potential accident scenario of the applicator breaking during insertion might be reduced by establishing a feedback loop of equipment-usage metrics and equipment-failure reports to the management controller. Conclusion: The utility of STPA in analyzing system hazards in a clinical brachytherapy system was demonstrated. This technique, rooted in system theory, identified scenarios both technical/clinical and managerial in nature. These results suggest that STPA can be successfully used to analyze safety in

  15. Interdisciplinary safety analysis of complex socio-technological systems based on the functional resonance accident model: An application to railway trafficsupervision

    Energy Technology Data Exchange (ETDEWEB)

    Belmonte, Fabien, E-mail: fabien.belmonte@transport.alstom.co [Alstom Transport, 48 rue Albert Dhalenne, 93482 Saint-Ouen cedex (France); Schoen, Walter [Universite de Technologie de Compiegne, Laboratoire Heudiasyc, Centre de Recherches de Royallieu, BP20529, 60205 Compiegne cedex (France); Heurley, Laurent [Universite de Picardie Jules Verne, Equipe Cognition, Langage, Emotion et Acquisition (CLEA), EA 4296, UFR de Philosophie, Sciences Humaines et Sociales, Chemin du Thil, 80025 Amiens, Cedex 1 (France); Capel, Robert [Alstom Transport, 48 rue Albert Dhalenne, 93482 Saint-Ouen cedex (France)

    2011-02-15

    This paper presents an application of functional resonance accident models (FRAM) for the safety analysis of complex socio-technological systems, i.e. systems which include not only technological, but also human and organizational components. The supervision of certain industrial domains provides a good example of such systems, because although more and more actions for piloting installations are now automatized, there always remains a decision level (at least in the management of degraded modes) involving human behavior and organizations. The field of application of the study presented here is railway traffic supervision, using modern automatic train supervision (ATS) systems. Examples taken from railway traffic supervision illustrate the principal advantage of FRAM in comparison to classical safety analysis models, i.e. their ability to take into account technical as well as human and organizational aspects within a single model, thus allowing a true multidisciplinary cooperation between specialists from the different domains involved. A FRAM analysis is used to interpret experimental results obtained from a real ATS system linked to a railway simulator that places operators (experimental subjects) in simulated situations involving incidents. The first results show a significant dispersion in performances among different operators when detecting incidents. Some subsequent work in progress aims to make these 'performance conditions' more homogeneous, mainly by ergonomic modifications. It is clear that the current human-machine interface (HMI) in ATS systems (a legacy of past technologies that used LED displays) has reached its limits and needs to be improved, for example, by highlighting the most pertinent information for a given situation (and, conversely, by removing irrelevant information likely to distract operators).

  16. WE-G-BRA-07: Analyzing the Safety Implications of a Brachytherapy Process Improvement Project Utilizing a Novel System-Theory-Based Hazard-Analysis Technique

    International Nuclear Information System (INIS)

    Tang, A; Samost, A; Viswanathan, A; Cormack, R; Damato, A

    2015-01-01

    Purpose: To investigate the hazards in cervical-cancer HDR brachytherapy using a novel hazard-analysis technique, System Theoretic Process Analysis (STPA). The applicability and benefit of STPA to the field of radiation oncology is demonstrated. Methods: We analyzed the tandem and ring HDR procedure through observations, discussions with physicists and physicians, and the use of a previously developed process map. Controllers and their respective control actions were identified and arranged into a hierarchical control model of the system, modeling the workflow from applicator insertion through initiating treatment delivery. We then used the STPA process to identify potentially unsafe control actions. Scenarios were then generated from the identified unsafe control actions and used to develop recommendations for system safety constraints. Results: 10 controllers were identified and included in the final model. From these controllers 32 potentially unsafe control actions were identified, leading to more than 120 potential accident scenarios, including both clinical errors (e.g., using outdated imaging studies for planning), and managerial-based incidents (e.g., unsafe equipment, budget, or staffing decisions). Constraints identified from those scenarios include common themes, such as the need for appropriate feedback to give the controllers an adequate mental model to maintain safe boundaries of operations. As an example, one finding was that the likelihood of the potential accident scenario of the applicator breaking during insertion might be reduced by establishing a feedback loop of equipment-usage metrics and equipment-failure reports to the management controller. Conclusion: The utility of STPA in analyzing system hazards in a clinical brachytherapy system was demonstrated. This technique, rooted in system theory, identified scenarios both technical/clinical and managerial in nature. These results suggest that STPA can be successfully used to analyze safety in

  17. Interdisciplinary safety analysis of complex socio-technological systems based on the functional resonance accident model: An application to railway trafficsupervision

    International Nuclear Information System (INIS)

    Belmonte, Fabien; Schoen, Walter; Heurley, Laurent; Capel, Robert

    2011-01-01

    This paper presents an application of functional resonance accident models (FRAM) for the safety analysis of complex socio-technological systems, i.e. systems which include not only technological, but also human and organizational components. The supervision of certain industrial domains provides a good example of such systems, because although more and more actions for piloting installations are now automatized, there always remains a decision level (at least in the management of degraded modes) involving human behavior and organizations. The field of application of the study presented here is railway traffic supervision, using modern automatic train supervision (ATS) systems. Examples taken from railway traffic supervision illustrate the principal advantage of FRAM in comparison to classical safety analysis models, i.e. their ability to take into account technical as well as human and organizational aspects within a single model, thus allowing a true multidisciplinary cooperation between specialists from the different domains involved. A FRAM analysis is used to interpret experimental results obtained from a real ATS system linked to a railway simulator that places operators (experimental subjects) in simulated situations involving incidents. The first results show a significant dispersion in performances among different operators when detecting incidents. Some subsequent work in progress aims to make these 'performance conditions' more homogeneous, mainly by ergonomic modifications. It is clear that the current human-machine interface (HMI) in ATS systems (a legacy of past technologies that used LED displays) has reached its limits and needs to be improved, for example, by highlighting the most pertinent information for a given situation (and, conversely, by removing irrelevant information likely to distract operators).

  18. An effective technique for the software requirements analysis of NPP safety-critical systems, based on software inspection, requirements traceability, and formal specification

    International Nuclear Information System (INIS)

    Koo, Seo Ryong; Seong, Poong Hyun; Yoo, Junbeom; Cha, Sung Deok; Yoo, Yeong Jae

    2005-01-01

    A thorough requirements analysis is indispensable for developing and implementing safety-critical software systems such as nuclear power plant (NPP) software systems because a single error in the requirements can generate serious software faults. However, it is very difficult to completely analyze system requirements. In this paper, an effective technique for the software requirements analysis is suggested. For requirements verification and validation (V and V) tasks, our technique uses software inspection, requirement traceability, and formal specification with structural decomposition. Software inspection and requirements traceability analysis are widely considered the most effective software V and V methods. Although formal methods are also considered an effective V and V activity, they are difficult to use properly in the nuclear fields as well as in other fields because of their mathematical nature. In this work, we propose an integrated environment (IE) approach for requirements, which is an integrated approach that enables easy inspection by combining requirement traceability and effective use of a formal method. The paper also introduces computer-aided tools for supporting IE approach for requirements. Called the nuclear software inspection support and requirements traceability (NuSISRT), the tool incorporates software inspection, requirement traceability, and formal specification capabilities. We designed the NuSISRT to partially automate software inspection and analysis of requirement traceability. In addition, for the formal specification and analysis, we used the formal requirements specification and analysis tool for nuclear engineering (NuSRS)

  19. NPP Temelin safety analysis reports and PSA status

    International Nuclear Information System (INIS)

    Mlady, O.

    1999-01-01

    To enhance the safety level of Temelin NPP, recommendations of the international reviews were implemented into the design as well as into organization of the plant construction and preparation for operation. The safety assessment of these design changes has been integrated and reflected in the Safety Analysis Reports, which follow the internationally accepted guidelines. All safety analyses within Safety Analysis Reports were repeated carefully considering technical improvements and replacements to complement preliminary safety documentation. These analyses were performed by advanced western computer codes to the depth and in the structure required by western standards. The Temelin NPP followed a systematic approach in the functional design of the Reactor Protection System and related safety analyses. Modifications of reactor protection system increase defense in depth and facilitate demonstrating that LOCA and radiological limits are met for non-LOCA events. The rigorous safety analysis methodology provides assurance that LOCA and radiological limits are met. Established and accepted safety analysis methodology and accepted criteria were applied to Temelin NPP meeting US NRC and Czech Republic requirements. IAEA guidelines and recommendations

  20. Uncertainty analysis in safety assessment

    International Nuclear Information System (INIS)

    Lemos, Francisco Luiz de; Sullivan, Terry

    1997-01-01

    Nuclear waste disposal is a very complex subject which requires the study of many different fields of science, like hydro geology, meteorology, geochemistry, etc. In addition, the waste disposal facilities are designed to last for a very long period of time. Both of these conditions make safety assessment projections filled with uncertainty. This paper addresses approaches for treatment of uncertainties in the safety assessment modeling due to the variability of data and some current approaches used to deal with this problem. (author)

  1. The safety interlocking system at the NAC

    International Nuclear Information System (INIS)

    Visser, K.; Mostert, H.

    1984-01-01

    The central safety interlocking system (CSIS) controls the higher level of interlocking between the various cyclotron subsystems. It ensures the safe operation of the entire cyclotron facility as regards personnel safety and proper instrument operation. The system consists of a micro-processor with a ROM-based safety interlocking program, relay output modules providing ''safety OK'' instructions to all interlocked apparatus, alarm input modules connected to transducers providing binary alarm status signals and an interface to the central control computer. All solid state electronic components of the system are situated in a low level radiation area and are interfaced to cyclotron equipment by means of 24 V relays

  2. Development and improvement of safety analysis code for geological disposal

    Energy Technology Data Exchange (ETDEWEB)

    NONE

    2013-08-15

    In order to confirm the long-term safety concerning geological disposal, probabilistic safety assessment code and other analysis codes, which can evaluate possibility of each event and influence on engineered barrier and natural barrier by the event, were introduced. We confirmed basic functions of those codes and studied the relation between those functions and FEP/PID which should be taken into consideration in safety assessment. We are planning to develop 'Nuclide Migration Assessment System' for the purpose of realizing improvement in efficiency of assessment work, human error prevention for analysis, and quality assurance of the analysis environment and analysis work for safety assessment by using it. As the first step, we defined the system requirements and decided the system composition and functions which should be mounted in them based on those requirements. (author)

  3. Innovation in the Safety of nuclear systems: fundamental aspects

    International Nuclear Information System (INIS)

    Herranz, L. E.

    2009-01-01

    Safety commercial nuclear reactors has been an indispensable condition for future enlargement of power generation based on nuclear technology. Its fundamental principle, defence in depth, far from being outdated, is still adopted as a key foundation in the advanced nuclear system (generations III and IV). Nevertheless, the cumulative experience gained in the operation and maintenance of nuclear reactors, the development of methodologies like the probabilistic safety analysis, the use of passive safety systems and, even, the inherent characteristics of some new design (which exclude accident scenarios), allow estimating safety figures of merit even more outstanding that those achieved in the second generation of nuclear reactors. This safety innovation of upcoming nuclear reactors has entailed a huge investigation program (generation III) that will be focused on optimizing and demonstrating the postulated safety of future nuclear systems (Generation IV). (Author)

  4. Meeting the maglev system's safety requirements

    Energy Technology Data Exchange (ETDEWEB)

    Pierick, K

    1983-12-01

    The author shows how the safety requirements of the maglev track system derive from the general legal conditions for the safety of tracked transport. It is described how their compliance beyond the so-called ''development-accompanying'' and ''acceptance-preparatory'' safety work can be assured for the Transrapid test layout (TVE) now building in Emsland and also for later application as public transport system in Germany within the meaning of the General Railway Act.

  5. The Evolution of System Safety at NASA

    Science.gov (United States)

    Dezfuli, Homayoon; Everett, Chris; Groen, Frank

    2014-01-01

    The NASA system safety framework is in the process of change, motivated by the desire to promote an objectives-driven approach to system safety that explicitly focuses system safety efforts on system-level safety performance, and serves to unify, in a purposeful manner, safety-related activities that otherwise might be done in a way that results in gaps, redundancies, or unnecessary work. An objectives-driven approach to system safety affords more flexibility to determine, on a system-specific basis, the means by which adequate safety is achieved and verified. Such flexibility and efficiency is becoming increasingly important in the face of evolving engineering modalities and acquisition models, where, for example, NASA will increasingly rely on commercial providers for transportation services to low-earth orbit. A key element of this objectives-driven approach is the use of the risk-informed safety case (RISC): a structured argument, supported by a body of evidence, that provides a compelling, comprehensible and valid case that a system is or will be adequately safe for a given application in a given environment. The RISC addresses each of the objectives defined for the system, providing a rational basis for making informed risk acceptance decisions at relevant decision points in the system life cycle.

  6. Fast flux test facility final safety analysis report amendment 79

    International Nuclear Information System (INIS)

    Dautel, W.A.

    1999-01-01

    This document is provided to replace, remove, or add applicable pages to the chapters on: Heat Transport System; Containment and Structures; Auxiliary Systems; Reactor Refueling System; Conduct of Operations; Safety Analysis; Quality Assurance; FFTF Criticality Specifications; and Appendix H's TRIGA Fuel Storage System

  7. Engineered safeguards and passive safety features (safety analysis detailed report no. 6)

    Energy Technology Data Exchange (ETDEWEB)

    1988-01-15

    The Safety-Analysis Summary lists the reactor's safety aspects for passive and active prevention of severe accidents and mitigation of accident consequences, i.e., intrinsic and passive protections of the plant; intrinsic and passive protections of the core; inherent decay-heat removal systems; rapid-shutdown systems; four physical containment barriers. This report goes into further details regarding some of this aspects.

  8. Rad waste disposal safety analysis / Integrated safety assessment of a waste repository

    International Nuclear Information System (INIS)

    Jeong, Jongtae; Choi, Jongwon; Kang, Chulhyung

    2012-04-01

    We developed CYPRUS+and adopted PID and RES method for the development of scenario. Safety performance assessment program was developed using GoldSim for the safety assessment of disposal system for the disposal of spnet fuels and wastes resulting from the pyrpoprocessing. Biosphere model was developed and verified in cooperation with JAEA. The capability to evaluate post-closure performance and safety was added to the previously developed program. And, nuclide migration and release to the biosphere considering site characteristics was evaluated by using deterministic and probabilistic approach. Operational safety assessment for drop, fire, and earthquake was also statistically evaluated considering well-established input parameter distribution. Conservative assessment showed that dose rate is below the limit value of low- and intermediate-level repository. Gas generation mechanism within engineered barrier was defined and its influence on safety was evaluated. We made probabilistic safety assessment by obtaining the probability distribution functions of important input variables and also made a sensitivity analysis. The maximum annual dose rate was shown to be below the safety limit value of 10 mSv/yr. The structure and element of safety case was developed to increase reliability of safety assessment methodology for a deep geological repository. Finally, milestone for safety case development and implementation strategy for each safety case element was also proposed

  9. Safety Verification for Probabilistic Hybrid Systems

    DEFF Research Database (Denmark)

    Zhang, Lijun; She, Zhikun; Ratschan, Stefan

    2010-01-01

    The interplay of random phenomena and continuous real-time control deserves increased attention for instance in wireless sensing and control applications. Safety verification for such systems thus needs to consider probabilistic variations of systems with hybrid dynamics. In safety verification o...... on a number of case studies, tackled using a prototypical implementation....

  10. ARIES-AT safety design and analysis

    Energy Technology Data Exchange (ETDEWEB)

    Petti, D.A. [Idaho National Engineering and Environmental Laboratory, Fusion Safety Program, P.O. Box 1625, Idaho Falls, ID 83415 (United States)]. E-mail: David.Petti@inl.gov; Merrill, B.J. [Idaho National Engineering and Environmental Laboratory, Fusion Safety Program, P.O. Box 1625, Idaho Falls, ID 83415 (United States); Moore, R.L. [Idaho National Engineering and Environmental Laboratory, Fusion Safety Program, P.O. Box 1625, Idaho Falls, ID 83415 (United States); Longhurst, G.R. [Idaho National Engineering and Environmental Laboratory, Fusion Safety Program, P.O. Box 1625, Idaho Falls, ID 83415 (United States); El-Guebaly, L. [Fusion Technology Institute, 1500 Engineering Drive, University of Wisconsin-Madison, Madison, WI 53706 (United States); Mogahed, E. [Fusion Technology Institute, 1500 Engineering Drive, University of Wisconsin-Madison, Madison, WI 53706 (United States); Henderson, D. [Fusion Technology Institute, 1500 Engineering Drive, University of Wisconsin-Madison, Madison, WI 53706 (United States); Wilson, P. [Fusion Technology Institute, 1500 Engineering Drive, University of Wisconsin-Madison, Madison, WI 53706 (United States); Abdou, A. [Fusion Technology Institute, 1500 Engineering Drive, University of Wisconsin-Madison, Madison, WI 53706 (United States)

    2006-01-15

    ARIES-AT is a 1000 MWe conceptual fusion power plant design with a very low projected cost of electricity. The design contains many innovative features to improve both the physics and engineering performance of the system. From the safety and environmental perspective, there is greater depth to the overall analysis than in past ARIES studies. For ARIES-AT, the overall spectrum of off-normal events to be examined has been broadened. They include conventional loss of coolant and loss of flow events, an ex-vessel loss of coolant, and in-vessel off-normal events that mobilize in-vessel inventories (e.g., tritium and tokamak dust) and bypass primary confinement such as a loss of vacuum and an in-vessel loss of coolant with bypass. This broader examination of accidents improves the robustness of the design from the safety perspective and gives additional confidence that the facility can meet the no-evacuation requirement under average weather conditions. We also provide a systematic assessment of the design to address key safety functions such as confinement, decay heat removal, and chemical energy control. In the area of waste management, both the volume of the component and its hazard are used to classify the waste. In comparison to previous ARIES designs, the overall waste volume is less because of the compact design.

  11. Technical self reliance of digital safety systems

    Energy Technology Data Exchange (ETDEWEB)

    Kwon, Kee Choon; Lee, Dong Young [Korea Atomic Energy Research Institute, Daejeon (Korea, Republic of); Kim, Kook Hun [Doosan Heavy Industries and Construction, Changwon (Korea, Republic of); Choi, Seung Gap [POSCON, Pohang (Korea, Republic of)

    2009-04-15

    This paper summarizes the development results of the Korea Nuclear Instrumentation and Control System (KNICS) project sponsored by the Korean government. In this project, Man Machine Interface System (MMIS) architecture, two digital platforms, and several control systems are developed. One platform is a programmable Logic Controller (PLC) for a safety system and another platform is a Distributed Control System (DCS) for a non safety system. With the POSAFE Q PLC, a Reactor Protection System (RPS) and an Engineered Safety Feature Component Control System (ESF CCS) are developed. A Power Control System (PCS) is developed based on the DCS. The safety grade platform and the digital safety systems obtained approval for the Topical Report from the Korean regulatory body in February of 2009. Also a Korean utility and a vendor company determined KNICS results to apply them to the planned Nuclear Power Plant (NPP) in March 2009. This paper introduces the technical self reliance experiences of the safety grade platform and the digital safety systems developed in the KNICS R and D project.

  12. Multicenter Retrospective Analysis of the Effectiveness and Safety of Rituximab in Korean Patients with Refractory Systemic Lupus Erythematosus

    Directory of Open Access Journals (Sweden)

    So-Young Bang

    2012-01-01

    Full Text Available Objective. Although two recent randomized placebo-controlled trials of rituximab (RTX failed to demonstrate efficacy in systemic lupus erythematosus (SLE, clinicians continue to use off-label RTX for cases refractory to current treatments. We evaluated the effectiveness and safety of rituximab for patients with refractory SLE in Korea. Methods. We retrospectively analyzed multicenter patients treated with RTX in Korea. Results. 39 SLE patients treated with RTX were included in the following manner: lupus nephritis 43.6%, hematologic 33.3%, arthritis 7.8%, myositis 7.8%, and others 7.7%. All patients had responded poorly to at least one conventional immunosuppressive agent (mean 2.5 ± 1.1, cyclophosphamide 43.6%, mycophenolate mofetil 48.7%, and other drugs before RTX. Clinical improvements (complete or partial remission occurred in patients with renal disease, hematologic disease, arthritis, myositis, and other manifestations at 6 months after RTX. The SLEDAI score was significantly decreased from 10.8±7.1 at baseline to 6.7±4.0 at 6 months, 6.2±4.1 at 12 months, and 5.5±3.6 at 24 months after RTX (P<0.05. Among 28 clinical responders, 4 patients experienced a relapse of disease at 25±4 months. Infections were noted in 3 patients (7.7%. Conclusion. RTX could be an effective and relatively safe therapeutic option in patients with severe refractory SLE until novel B-cell depletion therapy is available.

  13. PWR systems transient analysis

    International Nuclear Information System (INIS)

    Kennedy, M.F.; Peeler, G.B.; Abramson, P.B.

    1985-01-01

    Analysis of transients in pressurized water reactor (PWR) systems involves the assessment of the response of the total plant, including primary and secondary coolant systems, steam piping and turbine (possibly including the complete feedwater train), and various control and safety systems. Transient analysis is performed as part of the plant safety analysis to insure the adequacy of the reactor design and operating procedures and to verify the applicable plant emergency guidelines. Event sequences which must be examined are developed by considering possible failures or maloperations of plant components. These vary in severity (and calculational difficulty) from a series of normal operational transients, such as minor load changes, reactor trips, valve and pump malfunctions, up to the double-ended guillotine rupture of a primary reactor coolant system pipe known as a Large Break Loss of Coolant Accident (LBLOCA). The focus of this paper is the analysis of all those transients and accidents except loss of coolant accidents

  14. Systems Thinking and Patient Safety

    National Research Council Canada - National Science Library

    Schyve, Paul M

    2005-01-01

    Patient safety is a prominent theme in health care delivery today. This should come as no surprise, given that "first, do no harm" has been the ethical watchword throughout the history of medicine, nursing, and pharmacy...

  15. European Workshop Industrical Computer Science Systems approach to design for safety

    Science.gov (United States)

    Zalewski, Janusz

    1992-01-01

    This paper presents guidelines on designing systems for safety, developed by the Technical Committee 7 on Reliability and Safety of the European Workshop on Industrial Computer Systems. The focus is on complementing the traditional development process by adding the following four steps: (1) overall safety analysis; (2) analysis of the functional specifications; (3) designing for safety; (4) validation of design. Quantitative assessment of safety is possible by means of a modular questionnaire covering various aspects of the major stages of system development.

  16. ACRR fuel storage racks criticality safety analysis

    International Nuclear Information System (INIS)

    Bodette, D.E.; Naegeli, R.E.

    1997-10-01

    This document presents the criticality safety analysis for a new fuel storage rack to support modification of the Annular Core Research Reactor for production of molybdenum-99 at Sandia National Laboratories, Technical Area V facilities. Criticality calculations with the MCNP code investigated various contingencies for the criticality control parameters. Important contingencies included mix of fuel element types stored, water density due to air bubbles or water level for the over-moderated racks, interaction with existing fuel storage racks and fuel storage holsters in the fuel storage pool, neutron absorption of planned rack design and materials, and criticality changes due to manufacturing tolerances or damage. Some limitations or restrictions on use of the new fuel storage rack for storage operations were developed through the criticality analysis and are required to meet the double contingency requirements of criticality safety. As shown in the analysis, this system will remain subcritical under all credible upset conditions. Administrative controls are necessary for loading, moving, and handling the storage rack as well as for control of operations around it. 21 refs., 16 figs., 4 tabs

  17. Probabilistic safety analysis applied to RBMK reactors

    International Nuclear Information System (INIS)

    Gerez Martin, L.; Fernandez Ramos, P.

    1995-01-01

    The project financed by the European Union ''Revision of RBMK Reactor Safety was divided into nine Topic Groups dealing with different aspects of safety. The area covered by Topic Group 9 was Probabilistic Safety Analysis. TG9 will have touched on some of the problems discussed by other groups, although in terms of the systematic quantification of the impact of design characteristics and RBMK reactor operating practices on the risk of core damage. On account of the reduced time scale and the resources available for the project, the analysis was made using a simplified method based on the results of PSAs conducted in Western countries and on the judgement of the group members. The simplifies method is based on the concepts of Qualification, Redundancy and Automatic Actuation of the systems considered. PSA experience shows that systems complying with the above-mentioned concepts have a failure probability of 1.0E-3 when redundancy is simple, ie two similar equipment items capable of carrying out the same function. In general terms, this value can be considered to be dominated by potential common cause failures. The value considered above changes according to factors that have a positive effect upon it, such as an additional redundancy with a different equipment item (eg a turbo pumps and a motor pump), individual trains with good separations, etc, or a negative effect, such as the absence of suitable periodical tests, the need for operators to perform manual operations, etc. Similarly, possible actions required by the operator during accident sequences are assigned failure probability values between 1 and 1.0E-4, according to the complexity of the action (including local actions to be performed outside the control room) and the time available

  18. Nitrogen-system safety study: Portsmouth Gaseous Diffusion Plant

    International Nuclear Information System (INIS)

    1982-07-01

    The Department of Energy has primary responsibility for the safety of operations at DOE-owned nuclear facilities. The guidelines for the analysis of credible accidents are outlined in DOE Order 5481.1. DOE has requested that existing plant facilities and operations be reviewed for potential safety problems not covered by standard industrial safety procedures. This review is being conducted by investigating individual facilities and documenting the results in Safety Study Reports which will be compiled to form the Existing Plant Final Safety Analysis Report which is scheduled for completion in September, 1984. This Safety Study documents the review of the Plant Nitrogen System facilities and operations and consists of Section 4.0, Facility and Process Description, and Section 5.0, Accident Analysis, of the Final Safety Analysis Report format. The existing nitrogen system consists of a Superior Air Products Company Type D Nitrogen Plant, nitrogen storage facilities, vaporization facilities and a distribution system. The system is designed to generate and distribute nitrogen gas used in the cascade for seal feed, buffer systems, and for servicing equipment when exceptionally low dew points are required. Gaseous nitrogen is also distributed to various process auxiliary buildings. The average usage is approximately 130,000 standard cubic feet per day

  19. Safety analysis of the UTSI-CFFF superconducting magnet

    International Nuclear Information System (INIS)

    Turner, L.R.; Wang, S.T.; Smith, R.P.; VanderArend, P.C.; Hsu, Y.H.

    1979-01-01

    In designing a large superconducting magnet such as the UTSI-CFFF dipole, great attention must be devoted to the safety of the magnet and personnel. The conductor for the UTSI-CFFF magnet incorporates much copper stabilizer, which both insures its cryostability, and contributes to the magnet safety. The quench analysis and the cryostat fault condition analysis are presented. Two analyses of exposed turns follow; the first shows that gas cooling protects uncovered turns; the second, that the cryostat pressure relief system protects them. Finally the failure mode and safety analysis is presented

  20. Galileo and Ulysses missions safety analysis and launch readiness status

    International Nuclear Information System (INIS)

    Cork, M.J.; Turi, J.A.

    1989-01-01

    The Galileo spacecraft will explore the Jupiter system and Ulysses will fly by Jupiter en route to a polar orbit of the sun. Both spacecraft are powered by general purpose heat source radioisotope thermoelectric generators (RTGs). As a result of the Challenger accident and subsequent mission reprogramming, the Galileo and Ulysses missions' safety analysis had to be repeated. In addition to presenting an overview of the safety analysis status for the missions, this paper presents a brief review of the missions' objectives and design approaches, RTG design characteristics and development history, and a description of the safety analysis process. (author)

  1. Uncertainty analysis in safety assessment

    Energy Technology Data Exchange (ETDEWEB)

    Lemos, Francisco Luiz de [Centro de Desenvolvimento da Tecnologia Nuclear (CDTN), Belo Horizonte, MG (Brazil); Sullivan, Terry [Brookhaven National Lab., Upton, NY (United States)

    1997-12-31

    Nuclear waste disposal is a very complex subject which requires the study of many different fields of science, like hydro geology, meteorology, geochemistry, etc. In addition, the waste disposal facilities are designed to last for a very long period of time. Both of these conditions make safety assessment projections filled with uncertainty. This paper addresses approaches for treatment of uncertainties in the safety assessment modeling due to the variability of data and some current approaches used to deal with this problem. (author) 13 refs.; e-mail: lemos at bnl.gov; sulliva1 at bnl.gov

  2. Safety analysis of spent fuel packaging

    International Nuclear Information System (INIS)

    Akamatsu, Hiroshi; Taniuchi, Hiroaki; Tai, Hideto

    1987-01-01

    Many types of spent fuel packagings have been manufactured and been used for transport of spent fuels discharged from nuclear power plant. These spent fuel packagings need to be assesed thoroughly about safety transportation because spent fuels loaded into the packaging have high radioactivity and generation of heat. This paper explains the outline of safety analysis of a packaging, Safety analysis is performed for structural, thermal, containment, shielding and criticality factors, and MARC-CDC, TRUMP, ORIGEN, QAD, ANISN, KENO, etc computer codes are used for such analysis. (author)

  3. A Reliability Assessment Method for the VHTR Safety Systems

    International Nuclear Information System (INIS)

    Lee, Hyung Sok; Jae, Moo Sung; Kim, Yong Wan

    2011-01-01

    The Passive safety system by very high temperature reactor which has attracted worldwide attention in the last century is the reliability safety system introduced for the improvement in the safety of the next generation nuclear power plant design. The Passive system functionality does not rely on an external source of energy, but on an intelligent use of the natural phenomena, such as gravity, conduction and radiation, which are always present. Because of these features, it is difficult to evaluate the passive safety on the risk analysis methodology having considered the existing active system failure. Therefore new reliability methodology has to be considered. In this study, the preliminary evaluation and conceptualization are tried, applying the concept of the load and capacity from the reliability physics model, designing the new passive system analysis methodology, and the trial applying to paper plant.

  4. Safety analysis methodologies for radioactive waste repositories in shallow ground

    International Nuclear Information System (INIS)

    1984-01-01

    The report is part of the IAEA Safety Series and is addressed to authorities and specialists responsible for or involved in planning, performing and/or reviewing safety assessments of shallow ground radioactive waste repositories. It discusses approaches that are applicable for safety analysis of a shallow ground repository. The methodologies, analysis techniques and models described are pertinent to the task of predicting the long-term performance of a shallow ground disposal system. They may be used during the processes of selection, confirmation and licensing of new sites and disposal systems or to evaluate the long-term consequences in the post-sealing phase of existing operating or inactive sites. The analysis may point out need for remedial action, or provide information to be used in deciding on the duration of surveillance. Safety analysis both general in nature and specific to a certain repository, site or design concept, are discussed, with emphasis on deterministic and probabilistic studies

  5. HANFORD SAFETY ANALYSIS & RISK ASSESSMENT HANDBOOK (SARAH)

    Energy Technology Data Exchange (ETDEWEB)

    EVANS, C B

    2004-12-21

    The purpose of the Hanford Safety Analysis and Risk Assessment Handbook (SARAH) is to support the development of safety basis documentation for Hazard Category 2 and 3 (HC-2 and 3) U.S. Department of Energy (DOE) nuclear facilities to meet the requirements of 10 CFR 830, ''Nuclear Safety Management''. Subpart B, ''Safety Basis Requirements.'' Consistent with DOE-STD-3009-94, Change Notice 2, ''Preparation Guide for U.S. Department of Energy Nonreactor Nuclear Facility Documented Safety Analyses'' (STD-3009), and DOE-STD-3011-2002, ''Guidance for Preparation of Basis for Interim Operation (BIO) Documents'' (STD-3011), the Hanford SARAH describes methodology for performing a safety analysis leading to development of a Documented Safety Analysis (DSA) and derivation of Technical Safety Requirements (TSR), and provides the information necessary to ensure a consistently rigorous approach that meets DOE expectations. The DSA and TSR documents, together with the DOE-issued Safety Evaluation Report (SER), are the basic components of facility safety basis documentation. For HC-2 or 3 nuclear facilities in long-term surveillance and maintenance (S&M), for decommissioning activities, where source term has been eliminated to the point that only low-level, residual fixed contamination is present, or for environmental remediation activities outside of a facility structure, DOE-STD-1120-98, ''Integration of Environment, Safety, and Health into Facility Disposition Activities'' (STD-1120), may serve as the basis for the DSA. HC-2 and 3 environmental remediation sites also are subject to the hazard analysis methodologies of this standard.

  6. Operation safety of control systems. Principles and methods

    International Nuclear Information System (INIS)

    Aubry, J.F.; Chatelet, E.

    2008-01-01

    This article presents the main operation safety methods that can be implemented to design safe control systems taking into account the behaviour of the different components with each other (binary 'operation/failure' behaviours, non-consistent behaviours and 'hidden' failures, dynamical behaviours and temporal aspects etc). To take into account these different behaviours, advanced qualitative and quantitative methods have to be used which are described in this article: 1 - qualitative methods of analysis: functional analysis, preliminary risk analysis, failure mode and failure effects analyses; 2 - quantitative study of systems operation safety: binary representation models, state space-based methods, event space-based methods; 3 - application to the design of control systems: safe specifications of a control system, qualitative analysis of operation safety, quantitative analysis, example of application; 4 - conclusion. (J.S.)

  7. Safety strategy and safety analysis of nuclear power plants

    International Nuclear Information System (INIS)

    Franzen, L.F.

    1976-01-01

    The safety strategy for nuclear power plants is characterized by the fact that the high level of safety was attained not as a result of experience, but on the basis of preventive accident analyses and the finding derived from such analyses. Although, in these accident analyses, the deterministic approach is predominant, it is supplemented by reliability analyses. The accidents analyzed in nuclear licensing procedures cover a wide spectrum from minor incidents to the design basis accidents which determine the design of the safety devices. The initial and boundary conditions, which are essentail for accident analyses, and the determination of the loads occurring in various states during regular operation and in accidents flow into the design of the individual systems and components. The inevitable residual risk and its origins are discussed. (orig.) [de

  8. OBTAINING FOOD SAFETY BY APPLYING HACCP SYSTEM

    Directory of Open Access Journals (Sweden)

    ION CRIVEANU

    2012-01-01

    Full Text Available In order to increase the confidence of the trading partners and consumers in the products which are sold on the market, enterprises producing food are required to implement the food safety system HACCP,a particularly useful system because the manufacturer is not able to fully control finished products . SR EN ISO 22000:2005 establishes requirements for a food safety management system where an organization in the food chain needs to proove its ability to control food safety hazards in order to ensure that food is safe at the time of human consumption. This paper presents the main steps which ensure food safety using the HACCP system, and SR EN ISO 20000:2005 requirements for food safety.

  9. Technical features of ABWR safety systems

    International Nuclear Information System (INIS)

    Sugisaki, Toshihiko; Tominaga, Kenji; Horiuchi, Tetsuo

    1986-01-01

    The engineering safety facilities of ABWRs have been disigned so as to have many excellent characteristics such as safety, reliability and economy, reflecting the merit of adopting new technology such as internal pumps and new control rod driving mechanism, and coupled with the safety peculiar to BWRs. In this paper, about ECCS, containment vessels and others which compose the engineering safety facilities of ABWRs, the characteristics related to the safety owing to the adoption of internal pumps and others, and the evaluation of the performance at the time of various accidents are discussed. As the results of safety evaluation, it was clarified that due to the safety peculiar to ABWRs and the characteristics of the safety facilities, the large increases of safety, reliability and economy have been planned in the ABWRs, and for example, core flooding can be maintained even at the time of a hypothetical loss of coolant accident. BWRs have the simple system constitution, good self controllability, large natural circulation ability, simple operation control method and excellent ability of confining heat and radioactivity. BWRs have three safety functions to stop reactors, to remove heat from reactors, and to confine radioactive substances. These functions of ABWRs were evaluated, and very high safety was confirmed. (Kako, I.)

  10. Safety analysis SFR 1. Long-term safety

    Energy Technology Data Exchange (ETDEWEB)

    2008-12-15

    An updated assessment of the long-term safety of SKB's final repository for radioactive operational waste, SFR 1, is presented in this report. The report is included in the safety analysis report for SFR 1. The most recent account of long-term safety was submitted to the regulatory authorities in 2001. The present report has been compiled on SKB's initiative to address the regulatory authorities' viewpoints regarding the preceding account of long-term safety. Besides the new mode of working with safety functions there is another important difference between the 2001 safety assessment and the current assessment: The time horizon in the current assessment has been extended to 100,000 years in order to include the effect of future climate changes. The purpose of this renewed assessment of the long-term safety of SFR 1 is to show with improved data that the repository is capable of protecting human health and the environment against ionizing radiation in a long-term perspective. This is done by showing that calculated risks lie below the risk criteria stipulated by the regulatory authorities. SFR 1 is built to receive, and after closure serve as a passive repository for, low. and intermediate-level radioactive waste. The disposal chambers are situated in rock beneath the sea floor, covered by about 60 metres of rock. The underground part of the facility is reached via two tunnels whose entrances are near the harbour. The repository has been designed so that it can be abandoned after closure without further measures needing to be taken to maintain its function. The waste in SFR 1 is short-lived low- and intermediate-level waste. After 100 years the activity is less than half, and after 1,000 years only about 2% of the original activity remains. The report on long-term safety comprises eleven chapters. Chapter 1 Introduction. The chapter describes the purpose, background, format and contents of SAR-08, applicable regulations and injunctions, and the regulatory

  11. Safety analysis SFR 1. Long-term safety

    International Nuclear Information System (INIS)

    2008-12-01

    An updated assessment of the long-term safety of SKB's final repository for radioactive operational waste, SFR 1, is presented in this report. The report is included in the safety analysis report for SFR 1. The most recent account of long-term safety was submitted to the regulatory authorities in 2001. The present report has been compiled on SKB's initiative to address the regulatory authorities' viewpoints regarding the preceding account of long-term safety. Besides the new mode of working with safety functions there is another important difference between the 2001 safety assessment and the current assessment: The time horizon in the current assessment has been extended to 100,000 years in order to include the effect of future climate changes. The purpose of this renewed assessment of the long-term safety of SFR 1 is to show with improved data that the repository is capable of protecting human health and the environment against ionizing radiation in a long-term perspective. This is done by showing that calculated risks lie below the risk criteria stipulated by the regulatory authorities. SFR 1 is built to receive, and after closure serve as a passive repository for, low. and intermediate-level radioactive waste. The disposal chambers are situated in rock beneath the sea floor, covered by about 60 metres of rock. The underground part of the facility is reached via two tunnels whose entrances are near the harbour. The repository has been designed so that it can be abandoned after closure without further measures needing to be taken to maintain its function. The waste in SFR 1 is short-lived low- and intermediate-level waste. After 100 years the activity is less than half, and after 1,000 years only about 2% of the original activity remains. The report on long-term safety comprises eleven chapters. Chapter 1 Introduction. The chapter describes the purpose, background, format and contents of SAR-08, applicable regulations and injunctions, and the regulatory

  12. Safety analysis SFR 1. Long-term safety

    Energy Technology Data Exchange (ETDEWEB)

    2008-12-15

    An updated assessment of the long-term safety of SKB's final repository for radioactive operational waste, SFR 1, is presented in this report. The report is included in the safety analysis report for SFR 1. The most recent account of long-term safety was submitted to the regulatory authorities in 2001. The present report has been compiled on SKB's initiative to address the regulatory authorities' viewpoints regarding the preceding account of long-term safety. Besides the new mode of working with safety functions there is another important difference between the 2001 safety assessment and the current assessment: The time horizon in the current assessment has been extended to 100,000 years in order to include the effect of future climate changes. The purpose of this renewed assessment of the long-term safety of SFR 1 is to show with improved data that the repository is capable of protecting human health and the environment against ionizing radiation in a long-term perspective. This is done by showing that calculated risks lie below the risk criteria stipulated by the regulatory authorities. SFR 1 is built to receive, and after closure serve as a passive repository for, low. and intermediate-level radioactive waste. The disposal chambers are situated in rock beneath the sea floor, covered by about 60 metres of rock. The underground part of the facility is reached via two tunnels whose entrances are near the harbour. The repository has been designed so that it can be abandoned after closure without further measures needing to be taken to maintain its function. The waste in SFR 1 is short-lived low- and intermediate-level waste. After 100 years the activity is less than half, and after 1,000 years only about 2% of the original activity remains. The report on long-term safety comprises eleven chapters. Chapter 1 Introduction. The chapter describes the purpose, background, format and contents of SAR-08, applicable regulations and injunctions, and the

  13. Toward cellulose nanomaterial commercialization: knowledge gap analysis for safety data sheets according to the globally harmonized system

    Science.gov (United States)

    Jo Anne Shatkin; Kimberly J. Ong; James D. Ede; Theodore H. Wegner; Michael Goergen

    2016-01-01

    Commercialization of cellulose nanomaterials (CNs) is rapidly advancing, to the benefit of many end-use product sectors, and providing information about the safe manufacturing and handling for CNs is a priority. Safety Data Sheets (SDS) are required for industrially produced materials to communicate information on their potential health, fire, reactivity, and...

  14. Generalized Boolean logic Driven Markov Processes: A powerful modeling framework for Model-Based Safety Analysis of dynamic repairable and reconfigurable systems

    International Nuclear Information System (INIS)

    Piriou, Pierre-Yves; Faure, Jean-Marc; Lesage, Jean-Jacques

    2017-01-01

    This paper presents a modeling framework that permits to describe in an integrated manner the structure of the critical system to analyze, by using an enriched fault tree, the dysfunctional behavior of its components, by means of Markov processes, and the reconfiguration strategies that have been planned to ensure safety and availability, with Moore machines. This framework has been developed from BDMP (Boolean logic Driven Markov Processes), a previous framework for dynamic repairable systems. First, the contribution is motivated by pinpointing the limitations of BDMP to model complex reconfiguration strategies and the failures of the control of these strategies. The syntax and semantics of GBDMP (Generalized Boolean logic Driven Markov Processes) are then formally defined; in particular, an algorithm to analyze the dynamic behavior of a GBDMP model is developed. The modeling capabilities of this framework are illustrated on three representative examples. Last, qualitative and quantitative analysis of GDBMP models highlight the benefits of the approach.

  15. Safety features of subcritical fluid fueled systems

    International Nuclear Information System (INIS)

    Bell, C.R.

    1995-01-01

    Accelerator-driven transmutation technology has been under study at Los Alamos for several years for application to nuclear waste treatment, tritium production, energy generation, and recently, to the disposition of excess weapons plutonium. Studies and evaluations performed to date at Los Alamos have led to a current focus on a fluid-fuel, fission system operating in a neutron source-supported subcritical mode, using molten salt reactor technology and accelerator-driven proton-neutron spallation. In this paper, the safety features and characteristics of such systems are explored from the perspective of the fundamental nuclear safety objectives that any reactor-type system should address. This exploration is qualitative in nature and uses current vintage solid-fueled reactors as a baseline for comparison. Based on the safety perspectives presented, such systems should be capable of meeting the fundamental nuclear safety objectives. In addition, they should be able to provide the safety robustness desired for advanced reactors. However, the manner in which safety objectives and robustness are achieved is very different from that associated with conventional reactors. Also, there are a number of safety design and operational challenges that will have to be addressed for the safety potential of such systems to be credible

  16. Safety features of subcritical fluid fueled systems

    International Nuclear Information System (INIS)

    Bell, C.R.

    1994-01-01

    Accelerator-driven transmutation technology has been under study at Los Alamos for several years for application to nuclear waste treatment, tritium production, energy generation, and recently, to the disposition of excess weapons plutonium. Studies and evaluations performed to date at Los Alamos have led to a current focus on a fluid-fuel, fission system operating in a neutron source-supported subcritical mode, using molten salt reactor technology and accelerator-driven proton-neutron spallation.