APR1400-Z-J-EC-14004-NP, Control System CCF Analysis ...
52
15 th Pre-application Meeting 15 th Pre-application Review Meeting APR1400-Z-J-EC-14004-NP 7 th Pre-application Meeting 15 th Pre-application Review Meeting NON-PROPRIETARY Control System CCF Analysis Technical Report ● Introduction ● Credible Failure Type ● Control System Design Features ● Evaluation for Control Signals Sent to ESF-CCS ● Evaluation for Failure Type 1 ● Evaluation for Failure Type 2 ● Evaluation for Failure Type 3 ● Evaluation for Failure Type 4 ● Summary
Transcript of APR1400-Z-J-EC-14004-NP, Control System CCF Analysis ...
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
7th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
NON-PROPRIETARY
Control System CCF Analysis Technical Report
● Introduction
● Credible Failure Type
● Control System Design Features
● Evaluation for Control Signals Sent to ESF-CCS
● Evaluation for Failure Type 1
● Evaluation for Failure Type 2
● Evaluation for Failure Type 3
● Evaluation for Failure Type 4
● Summary
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
1
Introduction
Control System CCF Analysis TeR (APR1400-Z-J-NR-14001)
NRC letter comments (Dec. 19, 2013)
− The application did not provide sufficient information for the software
common cause failures of non-safety related control systems that can lead
to spurious actuations of redundant safety and non-safety components.
KHNP plan proposed at the 13th PARM (Feb. 11, 2014)
− Committed to submit a new Control system SWCCF Analysis TeR.
− Proposed four Failure Modes (i.e., four Failure Types).
− Presented evaluation example of the Failure Type 1.
− Assumptions for four Failure Types
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
2
TS
Introduction NRC Major Feedbacks and Comments
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
3
MCRSC
System Level Switches
TORO EO
DIS
Mini-LDPQIAS-NQIAS-PDIS SODP
RTSS(A1,B1,C1,D1,A2,B2,C2,D2)
APC-S(A,B,C,D)
CIM(A,B,C,D)
FissionChamber
I
I
I
Non-safety Components(Sensors, Txs, Pumps, Valves, etc.)
T/GComponents
ENFMS(A,B,C,D)
I
ESF-CCSLC
(A,B,C,D)
MSISAct.
IFPD
RSR
IFPD
IPS
DIS QIAS-P QIAS-N QIAS-N QIAS-N
T / GCSFIDASP - CCS GC / LCPCS
I
QIAS-P(A,B)
LegendDAS
APC-S: Auxiliary Process Cabinet - SafetyCCG: Control Channel GatewayCIM: Component Interface ModuleCPCS: Core Protection Calculator SystemCPM: Control Panel MultiplexerDAS: Diverse Actuation SystemDIS: Diverse Indication SystemDCN-I: Data Communication Network-Information
I : IsolatorIFPD: Information Flat Panel DisplayIPS: Information Processing SystemITP: Interface and Test ProcessorLC: Loop ControllerLDP: Large Display PanelMCR: Main Control Room
PPS(A,B,C,D)
ESF-CCSGC
(A,B,C,D)
OM(A,B,C,D)
LDP
ITP(A,B,C,D)
RxTrip
Common platform for Safety I&C
Common platform for Non-Safety I&C
Dedicated equipment for the System
Display or Soft control device
Safety System Data Network (SDN)
Non-safety Network (DCN-I)
Serial Data Link (SDL)
Hardwired connectionPPS
Diverse platform for DAS
MinimumInventory
IncoreDetector
Safety-related Non-Safety
Other Channels
DPS(N1,N2,N3,N4)
ESF-CCS GC
DMA: Diverse Manual ESF ActuationDPS: Diverse Protection SystemENFMS: Ex-core Neutron Flux Monitoring SystemESCM: ESF-CCS Soft Control ModuleESF-CCS: Engineered Safety Features - Component Control SystemFIDAS: Fixed In-core Detector Amplifier SystemGC: Group ControllerG: Gateway
MTP: Maintenance and Test PanelNPCS: NSSS Process Control SystemMSIS: Main Steam Isolation SystemOM: Operator ModuleP-CCS: Process-Component Control SystemPCS: Power Control SystemPPS: Plant Protection System
QIAS-P/N: Qualified Indication & Alarm System – P / Non-safetyRSR: Remote Shutdown RoomRTSS: Reactor Trip Switchgear SystemRx : ReactorSC: Safety ConsoleSODP: Shutdown Overview Display PanelT/GCS : Turbine/Generator Control System
Safety Components(Sensors, Txs, Pumps, Valves, etc.)
CIM RTSS
DMA
RxTrip
`
CPCS(A,B,C,D)
CPM(A,B,C,D)
Rev.1
G
G G
OperatingBypass
SetpointReset
RxTripDMA ESF
Act.
OM
Operat.Bypass
SetpointReset
RTSSCPM
(A,B,C,D)
Type AVariables
QIAS-P
SDN
SDNDCN-I DCN-I
ESCM(A,B,C,D)
ESCM(A,B,C,D)
MTP(A,B,C,D)
G
QIAS-NG
ESCM(A,B,C,D)
CCG(A,B,C,D)
Ethernet
NPCS
CCG
Introduction Credible Failure Boundary
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
4
TS
Introduction Control System Overview - Primary & Secondary System
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
5
TS
Credible Failure Type Credible Failure Types of Control System CCF
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
6
TS
Credible Failure Type Initiating Event Selection for Failure Types 1, 2, 3 & 4
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
7
TS
Credible Failure Type Failure Type Overview
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
8
Control System Design Features
Each control group assigned to separate controller(s) to limit the failure in the control group (segmentation)
Redundant controller for availability enhancement Interlock/ permissive functions by separate control group or safety system
to limit the failure effects (e.g., CEAs withdrawal interlock signals, TBV permissive signals)
Control signal validation to limit a single input failure of redundant channel inputs (i.e., large deviation of redundant inputs)
Redundant analog input modules with auto signal selection algorithm to limit the failure effect of a single module (i.e., out of range)
Hardwired signal interface of shared signals between major control groups[1]
Self-diagnostics and abnormal alarming Structured software development process Test before and after installation [1] Major control groups consist of RRS/RPCS, DRCS, PPCS, PLCS, SBCS Main/Permissive,
FWCS1/2 and are called as nuclear steam supply system (NSSS) control system.
Control System Design Features against CSCCF
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
9
TS
Control System Design Features Design Features - Segmentation
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
10
TS
Control System Design Features Design Features – Segmentation (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
11
TS
Control System Design Features Design Features - Segmentation (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
12
TS
Evaluation for Control Signals Sent to ESF-CCS Evaluation Result
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
13
TS
Evaluation for Control Signals Sent to ESF-CCS Evaluation Result (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
14
TS
Evaluation for Control Signals Sent to ESF-CCS Evaluation Result (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
15
TS
Evaluation for Failure Type 1 Evaluation Method
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
16
TS
Evaluation for Failure Type 1 Shared Signal List (1/2)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
17
TS
Evaluation for Failure Type 1 Shared Signal List (2/2)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
18
TS
Evaluation for Failure Type 1 Evaluation Result (example)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
19
TS
Evaluation for Failure Type 1 Evaluation Result (summary)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
20
TS
Evaluation for Failure Type 1 Evaluation Result (summary) (Cont’d)
Detailed evaluation result will be included in TeR.
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
21
TS
Evaluation for Failure Type 2 Evaluation Method
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
22
TS
Evaluation for Failure Type 2 Evaluation Result (example)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
23
TS
Evaluation for Failure Type 2 Evaluation Result (example) (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
24
TS
Evaluation for Failure Type 3 Evaluation Method
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
25
TS
Evaluation for Failure Type 3 Best Estimate Method with Realistic Assumption
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
26
TS
Evaluation for Failure Type 3 Available Systems Credited in the Evaluation
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
27
TS
Evaluation for Failure Type 3 Qualitative Evaluation
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
28
TS
Evaluation for Failure Type 3 Quantitative Analysis
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
29
TS
Evaluation for Failure Type 3 Quantitative Analysis Tool : RELAP5
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
30
TS
Evaluation for Failure Type 3 Initialization of RELAP5 for Nominal Initial Condition
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
31
TS
Evaluation for Failure Type 3 Challenge to Fuel Cladding Integrity
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
32
TS
Evaluation for Failure Type 3 Challenge to Fuel Cladding Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
33
TS
Evaluation for Failure Type 3 Challenge to Fuel Cladding Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
34
TS
Evaluation for Failure Type 3 Challenge to Fuel Cladding Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
35
TS
Evaluation for Failure Type 3 Challenge to Fuel Cladding Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
36
TS
Evaluation for Failure Type 3 Challenge to Fuel Cladding Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
37
TS
Evaluation for Failure Type 3 Challenge to Fuel Cladding Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
38
TS
Evaluation for Failure Type 3 Challenge to Fuel Cladding Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
39
TS
Evaluation for Failure Type 3 Challenge to Fuel Cladding Integrity (Results)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
40
TS
Evaluation for Failure Type 3 Challenge to Primary System Integrity
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
41
TS
Evaluation for Failure Type 3 Challenge to Primary System Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
42
TS
Evaluation for Failure Type 3 Challenge to Primary System Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
43
TS
Evaluation for Failure Type 3 Challenge to Primary System Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
44
TS
Evaluation for Failure Type 3 Challenge to Primary System Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
45
TS
Evaluation for Failure Type 3 Challenge to Primary System Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
46
TS
Evaluation for Failure Type 3 Challenge to Primary System Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
47
TS
Evaluation for Failure Type 3 Challenge to Primary System Integrity (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
48
TS
Evaluation for Failure Type 3 Challenge to Primary System Integrity (Results)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
49
TS
Evaluation for Failure Type 4 Evaluation Method
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
50
TS
Evaluation for Failure Type 4 Evaluation Method (Cont’d)
15
th P
re-a
pp
lica
tio
n M
eeti
ng
1
5th
Pre
-ap
pli
cati
on
Rev
iew
Mee
tin
g
APR1400-Z-J-EC-14004-NP
Chapter 7 I&C
51
TS
Summary Summary of Results
