Workshop Information IAEA Workshop

Similar documents
Safety Analysis: Event Classification

Workshop Information IAEA Workshop

Review and Assessment of Engineering Factors

Recent Research on Hazards PSA

Probabilistic safety assessment of fire hazards

MDEP Common Position No AP

RISKAUDIT GRS - IRSN Safety assessment of the BELENE NPP

Verification and validation of computer codes Exercise

Safety and efficiency go hand in hand at MVM Paks NPP

Enhancing NPP Safety through an Effective Dependability Management

NUBIKI Nuclear Safety Research Institute, Budapest, Hungary

Considerations for the Practical Application of the Safety Requirements for Nuclear Power Plant Design

LECTURE 3 MAINTENANCE DECISION MAKING STRATEGIES (RELIABILITY CENTERED MAINTENANCE)

SAFETY APPROACHES. The practical elimination approach of accident situations for water-cooled nuclear power reactors

Assessing Combinations of Hazards in a Probabilistic Safety Analysis

Loss of Normal Feedwater Analysis by RELAP5/MOD3.3 in Support to Human Reliability Analysis

IAEA-TECDOC Precursor analyses The use of deterministic and PSA based methods in the event investigation process at nuclear power plants

How to reinforce the defence-indepth in NPP by taking into account natural hazards?

Safety Classification of Structures, Systems and Components in Nuclear Power Plants

IAEA SAFETY STANDARDS for protecting people and the environment

Severe Accident Management Programmes for Nuclear Power Plants

IAEA SAFETY STANDARDS for protecting people and the environment

PRA Methodology Overview

RISK-INFORMED OPTIMIZATION OF SURVEILLANCE TEST INTERVALS. Sami Sirén 1, Kalle Jänkälä 2

A GUIDE TO RISK ASSESSMENT IN SHIP OPERATIONS

Identification and Screening of Scenarios for LOPA. Ken First Dow Chemical Company Midland, MI

Nuclear safety Lecture 4. The accident of the TMI-2 (1979)

DeZURIK. KGC Cast Knife Gate Valve. Safety Manual

IAEA Training in Level 2 PSA MODULE 8: Coupling Source Terms to Probabilistic Event Analysis (CET end-state binning)

SENSITIVITY ANALYSIS OF THE FIRST CIRCUIT OF COLD CHANNEL PIPELINE RUPTURE SIZE FOR WWER 440/270 REACTOR

IAEA Headquarters in Vienna, Austria 6 to 9 June 2017 Ref No.: CN-251. Ivica Bašić, Ivan Vrbanić APoSS d.o.o.

The «practical elimination» approach for pressurized water reactors

CHAPTER 28 DEPENDENT FAILURE ANALYSIS CONTENTS

Safety of Decommissioning: International Cooperation under the IAEA Coordination

Regulatory Review of Safety Assessment for Decommissioning of Facilities Using Radioactive Material

Understanding safety life cycles

Ranking of safety issues for

CONTENTS OF THE PCSR CHAPTER 1 - INTRODUCTION AND GENERAL DESCRIPTION

Hazardous Waste Training Plan. Supersedes: 02/15/16 (Rev.02) Preparer: Owner: Approver: EHS Team Member EHS Team Member EHS Manager

Every things under control High-Integrity Pressure Protection System (HIPPS)

IEM on Severe Accident Management in the light of the accident at the Fukushima Daïchi NPP

THE CANDU 9 DISTRffiUTED CONTROL SYSTEM DESIGN PROCESS

System Operating Limit Definition and Exceedance Clarification

Nuclear Safety Regulation: Before and after Fukushima*

IAEA Regional Workshop Legal and Regulatory Aspects of Decommissioning of Research Reactors June Manila, Philippines

DESIGN OF REACTOR CONTAINMENT STRUCTURE AND SYSTEMS FOR NUCLEAR POWER PLANTS

The Nitrogen Threat. The simple answer to a serious problem. 1. Why nitrogen is a risky threat to our reactors? 2. Current strategies to deal with it.

Ing. JOZEF BALÁŽ Ph.D. and Ing MILAN CVAN CSc

DeZURIK. KSV Knife Gate Valve. Safety Manual

10. SYSTEM ANALYSIS. The assessment consist of two elements: Safety Analysis Report and an independent Review of Safety Report.

Questions & Answers About the Operate within Operate within IROLs Standard

NKS PODRIS project. Importance of inspection reliability assumptions on piping failure probability estimates

A study on the relation between safety analysis process and system engineering process of train control system

PI MODERN RELIABILITY TECHNIQUES OBJECTIVES. 5.1 Describe each of the following reliability assessment techniques by:

-. 30ýv. Entergy ARKANSAS NUCLEAR ONE - UNIT I IMPROVED TECHNICAL SPECIFICATIONS SUBMITTAL. 05/01101 Supplement Volume 2 of 2. (Sections 3.7 and 3.

Transient Analyses In Relief Systems

Correlation of Equipment Failures in Seismic PRAs

Control of Hazardous Energy. Environmental Health and Safety

An Improved Modeling Method for ISLOCA for RI-ISI and Other Risk Informed Applications

Session One: A Practical Approach to Managing Safety Critical Equipment and Systems in Process Plants

Instrumented Safety Systems

DeZURIK Double Block & Bleed (DBB) Knife Gate Valve Safety Manual

SHUTDOWN SYSTEMS: SDS1 AND SDS2

Drilling Efficiency Utilizing Coriolis Flow Technology

Fishery Improvement Projects

NASA AEROSPACE PRESSURE VESSEL SAFETY STANDARD

Systems of Accounting for and Control of Nuclear Material

Helicopter Safety Recommendation Summary for Small Operators

HIGH WIND PRA DEVELOPMENT AND LESSONS LEARNED FROM IMPLEMENTATION Artur Mironenko and Nicholas Lovelace

Complementarity between Safety and Physical Protection in the Protection against Acts of Sabotage of Nuclear Facilities

Param Express. Param Sankalp December Newsletter winners. Key Activities Concluded. Watch Out For

Evaluation and Demonstration of Safety of Decommissioning of

Safety Engineering - Hazard Identification Techniques - M. Jahoda

ASSESSMENT SAFETY. PRlNtlPLES FOR NUCLEAR PLANTS HSE. This version of the SAPs has been super eded by the 2014 version. Please see

Understanding the How, Why, and What of a Safety Integrity Level (SIL)

DRAFT REGULATORY GUIDE DG-1074

Sea-going vessel versus wind turbine

BSR GPTC Z TR GM References and Reporting Page 1 of 8

System Operating Limit Definition and Exceedance Clarification

Quantitative Risk Analysis (QRA)

Safety zones and other Land Use Planning tools to reduce acute environmental risks

DESIGN OF REACTOR CONTAINMENT STRUCTURE AND SYSTEMS FOR NUCLEAR POWER PLANTS

GOVERNMENT OF SASKATCHEWAN SUBMISSION TO THE RAILWAY SAFETY ACT REVIEW PANEL

Fishery Improvement Projects

Level 2 PSA for the VVER 440/213 Dukovany Nuclear Power Plant

Human Reliability Analysis of Ultimate Response Guideline in a Compound Disaster. Hyatt Regency Tokyo, Japan April 16, 2013

INSTITUTIONAL REVIEW BOARD (IRB) PROCEDURES

DOCKYARD PORT OF PLYMOUTH HARBOUR SAFETY PLAN. Issue 2 Jun 13

Systems Theoretic Process Analysis (STPA)

The IEC61508 Operators' hymn sheet

Purpose. Scope. Process flow OPERATING PROCEDURE 07: HAZARD LOG MANAGEMENT

Risks Associated with Caissons on Ageing Offshore Facilities

Safety Risk Assessment Worksheet Title of Risk Assessment Risk Assessment Performed By: Date: Department:

DISTRIBUTION LIST. Preliminary Safety Report Chapter 19 Internal Hazards UK HPR1000 GDA. GNS Executive. GNS all staff. GNS and BRB all staff CGN EDF

OIL & GAS. MTS DP Committee. Workshop in Singapore Session 4 Day 2. Unwanted Thrust

2600T Series Pressure Transmitters Plugged Impulse Line Detection Diagnostic. Pressure Measurement Engineered solutions for all applications

Containment Isolation system analysis and its contribution to level 2 PSA results in Doel 3 unit

Effects of Delayed RCP Trip during SBLOCA in PWR

CONTROL OF HAZARDOUS ENERGY LOCKOUT/TAGOUT PROGRAM

Training Fees 3,400 US$ per participant for Public Training includes Materials/Handouts, tea/coffee breaks, refreshments & Buffet Lunch.

Transcription:

IAEA Training Course on Safety Assessment of NPPs to Assist Decision Making Risk Monitoring tools: Requirements of Risk Monitors, relation with the Living PSA, applications of Risk Monitors Lecturer Lesson Lesson IV IV3_11.6 Workshop Information IAEA Workshop City, XX XX - City -XX, Country Month, Year Year

Living PSA: Definition A PSA of the plant, which is updated as necessary to reflect the current design and operational features, and is documented in such a way that each aspect of the model can be directly related to existing plant information, plant documentation or the analysts assumptions in the absence of such information. The LPSA would be used by designers, utility and regulatory personnel for a variety of purposes according to their needs, such as design verification, assessment of potential changes to the plant design or operation, design of training programmes and assessment of changes to the plant licensing basis IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 1

Living PSA: General Requirements The basis for the LPSA model should be comprehensively documented so that each aspect of the model can be directly related to existing plant information or to the analysts' assumptions of how the plant and the operating staff behave. It must be possible to update the LPSA as changes are made to plant design and operation, feedback is obtained from internal and external operational experience, understanding of thermal-hydraulic performance or accident progression is improved, and advances are made in modelling techniques A Living PSA can only be developed and maintained successfully by a team of qualified analysts with the full support of the plant management and the involvement of different plant departments. IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 2

Living PSA - Definition PSA updated as necessary to reflect the current design and operation of the plant Calculates the average risk from the plant - averaged over all modes of operation/ plant configurations Used for design verification, assessment of changes to design or operation, risk informed applications, etc. Used off-line by PSA specialists IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 3

Risk Monitors A significant part of the PSA applications require near prompt knowledge of the actual risk caused by the actual situation at the plant. This requirement can be satisfied by using a special tool called a Risk Monitor. A Risk Monitor is a plant specific real-time analysis tool used to determine the instantaneous risk based on the actual status of the systems and components. At any given time, the safety monitor reflects the current plant configuration in terms of the known status of the various systems and/or components, e.g., whether there are any components out of service for maintenance or tests. The risk monitor model is based on, and is consistent with, the LPSA. It is updated with the same frequency as the LPSA. The safety monitor is used by the plant staff in support of operational decisions IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 4

Risk Monitor - Definition Real time analysis tool???? Consistent with the LPSA, updated with the same frequency Used to determine the instantaneous risk based on the current mode of operation/ plant configuration Used by plant staff to support operational decisions IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 5

Uses of Risk Monitors Provide information on acceptability of point-in-time and annual average risk Assist in compliance with Operating Rules (Tech Specs) for unplanned plant unavailabilities Advise on the acceptability of future planned plant unavailabilities Assist in planning multiple plant unavailabilities Provide advice on-line Advise with respect to both Deterministic and Probabilistic criteria IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 6

Why is Risk Time Dependent? Risk changes versus time due to several reasons: Component outages Different Plant alignments Maintenance activities Testing External factors: Likelihood of offsite power, increased number of flights over the plant, etc. Plant transients Equipment degradation, plugging, ageing Human factors: The operator is tired today or the new one is on duty etc. Neither LPSAs nor Risk Monitors account time dependently for all the influencing factors IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 7

Some Advantages of a Risk Monitor More flexibility with allowed outages Reduced likelihood of reactor shutdown being required Forward planning capability helps to reduce average risk Rapid response IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 8

Risk Versus Time Instantaneous risk Estimated average risk Real average risk IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 9

PSA / Risk Monitor Uses/Users Analysis of the past: Event incident analysis (PSA-Risk Monitor) Plant Performance, risk profiles (Risk Monitor) etc. Analysis of present situation: IST, Technical Specification Analysis (PSA) Exemption to Tech. Specs (Risk Monitor) Plant configuration Control, Risk Management (Risk Monitor) etc. Analysis of the future: Maintenance Planning (Risk Monitor), etc. Maintenance Rule (Risk Monitor) Risk Monitors can be used on and off-line, by PSA experts and other staff (Operation, Maintenance) PSA is used off-line and by PSA experts Uses depend on type of Regulatory Regime IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 10

Average and Instantaneous Risk Considerations in Risk Monitors With risk monitors we try to assess the effect of plant alignments, component outages and testing and some other factors on instantaneous risk. Some other factors affecting risk remain treated as average. Therefore, properly speaking, it is wrong that risk monitors provide real time risk measures. However, this doesn t diminish the usefulness of risk monitors. It is not intended to assess time dependently all the factors affecting risk. We only need to make sure that such factors cannot make such an influence at given time, so that adverse decisions can be made based on risk monitor results. In other words, we have to make sure that we treat adequately some factors time dependently and that it is acceptable to consider such other factors as average. IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 11

Average and Instantaneous Risk Considerations in Risk Monitors Risk monitors don t provide real instantaneous risk estimates We want to approach to instantaneous risk by taking into account: plant configuration/alignment component outages, testing important factors affecting risk that cannot be obviated, e.g. increased likelihood of initiating events, that could seriously affect decisions based on instantaneous risk estimates. other affordable factors AOTs of deterministic Tec. Specs. don t consider other factors affecting risk, and don t even consider simultaneous outages IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 12

Technical Differences Between Risk Monitor and PSA What are the differences regarding modelling between PSA and risk monitors? How to convert a LPSA model to a Risk monitor model? How to keep both updated? What applications should be done with each tool? Do the requirements of a risk monitor should be different depending on the intended use of it? Joint IAEA - NEA /OECD Work IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 13

Accident Sequence Development Initiating events: Initiating event frequencies are time dependent in reality: Low time dependent events: LOCA Events governed by outside factors: LOOP (grid instability, severe weather, external events), LOHS (leaves plugging the intake station), etc. Events driven by internal factors (predictable or not): Operational transients, component (conventional or safety related) outages, maintenance and testing activities, etc. How risk monitors could account for that? Is it necessary to account for all this factors? Accident sequence development: Can accident sequences be affected by plant configuration, e.g. Validity of modelling assumptions, probabilities of human errors, etc.? IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 14

System Analysis At the PSA only some particular system configurations are modelled. How should the models be modified to account for different configurations?. Which solution is adopted by the different risk monitors?. IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 15

Human Reliability How human actions should or could be assessed depending on plant configuration or time? Which performance shaping factors should be modified? Are factors affecting human errors considered as part of the plant configuration? How are type 1 and type 3 human errors treated? IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 16

Reliability Data Some important events not further analysed can be reassessed given the actual plant status, e.g. LOOP frequency Parameters affecting standby models, e.g. last surveillance test time point could be taken into account. etc. IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 17

Common Cause Before an outage the CCF estimate remains the same. What happens when a component of a CCF group fails or is taken out of service? IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 18

Quantification Pre-Solution Large number of runs of the PSA carried out for different plant configurations and stored in a database Cut Set Manipulation Cut-set files obtained from solving the PSA to a very low cut off level manipulated to model plant outages???????? Re-Solution Hybrid RM contains a PSA logic model which is solved for each new plant configuration IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 19

Removal of Simplifications Removal of asymmetries Model running and standby trains explicitly Model cross-connections connections explicitly Remove maintenance basic events Review grouping of initiating events Replace initiating events screened out in LPSA Model all safety systems IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 20

Development of Risk Monitors 1988 - Heysham 2, Essential Systems Status Monitor (ESSM) 1990 Torness, LINKITT 1994 San Onofre, Scientech Safety Monitor TM 2002 >100 plants have RMs in use or under development IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 21

Frequent Uses of Risk Monitor Planning maintenance outages/configuration control Compliance with US NRC maintenance rule Other Requires plant operators to assess the risk prior to entering a planned maintenance configuration and after entering a non-voluntary configuration Precursor analysis Sensitivity studies Other risk informed applications IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 22

Risk Criteria Used in RM Risk criteria required to distinguish: NORMAL OPERATION no restriction on maintenance MODERATE RISK maintenance needs to be completed urgently time restrictions imposed CAUTION maintenance completed very urgently/ severe time restrictions compensatory measures UNACCEPTABLE RISK immediate action required to reduce the risk IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 23

Typical Risk Criteria UNACCEPTABLE RISK CAUTION MODERATE RISK NORMAL OPERATION CORE DAMAGE FREQUENCY 10-3 per year 1 to 3x10-4 per year ~average risk calc in LPSA CDF x TIME IN CONFIGURATION < 10-6 IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 24

Conclusions Development and use of RMs during nuclear power plant operation is now a mature practice RMs are in day to day operation in a large number of plants worldwide RMs accepted by plant managers and station staff Safety of nuclear plants is enhanced by the ability to monitor risk on-line Use of a RM is a good way of demonstrating that the risk is ALARP IAEA Training Course of Safety Assessment of NPPs to Assist Decision Making 25

2024 © sportdocbox.com Privacy Policy | Terms of Service | Feedback