SHUTDOWN SYSTEMS: SDS1 AND SDS2

Similar documents
DeC. Dr. Jean Koclas Ecole Polytechnique, Montreal, Canada. Reactor Control and Simulation Chapter 5: Liquide Zone Control (CBL)

SAFETY DEMONSTRATION TESTS ON HTR-10

Instrumentation systems of BWR

CANDU ORIGINS AND EVOLUTION PART 5 OF 5. THE ORIGINS & EVOLUTION OF THE SECOND SHUTDOWN SYSTEM by G.L. Brooks February

Modification of the CNS Helium Injection Logic

CONTENTS OF THE PCSR CHAPTER 1 - INTRODUCTION AND GENERAL DESCRIPTION

EXPERIMENTAL SUPPORT OF THE BLEED AND FEED ACCIDENT MANAGEMENT MEASURES FOR VVER-440/213 TYPE REACTORS

This test shall be carried out on all vehicles equipped with open type traction batteries.

Enhancing NPP Safety through an Effective Dependability Management

Finding leaks in Main Cryogenic Heat Exchangers without shutdown

Technical Data Sheet MF010-O-LC

ASVAD THE SIMPLE ANSWER TO A SERIOUS PROBLEM. Automatic Safety Valve for Accumulator Depressurization. (p.p.)

H 2 O Bubble Chamber Superheated Active Target System. Safety and Systems Overview B. DiGiovine

HTR Systems and Components

FUNDAMENTAL SAFETY OVERVIEW VOLUME 2: DESIGN AND SAFETY CHAPTER P: REFERENCE OPERATING CONDITION STUDIES (PCC)

NE 405/505 Exam 2 Spring 2015

Inerting System Design for Medium Speed Vertical Spindle Coal Pulverizers TABLE OF CONTENTS

Verification and validation of computer codes Exercise

AP1000 European 19. Probabilistic Risk Assessment Design Control Document

Safety Manual OPTISWITCH series relay (DPDT)

SENSITIVITY ANALYSIS OF THE FIRST CIRCUIT OF COLD CHANNEL PIPELINE RUPTURE SIZE FOR WWER 440/270 REACTOR

Gas Network Craftsperson

PI MODERN RELIABILITY TECHNIQUES OBJECTIVES. 5.1 Describe each of the following reliability assessment techniques by:

A Study of Intermittent Buoyancy Induced Flow Phenomena in CANDU Fuel Channels

Safety Analysis: Event Classification

CNS In-Pool Assembly Mechanical Design for OYSTER Project

Effects of Delayed RCP Trip during SBLOCA in PWR

The Nitrogen Threat. The simple answer to a serious problem. 1. Why nitrogen is a risky threat to our reactors? 2. Current strategies to deal with it.

GAS FUEL VALVE FORM AGV5 OM 8-03

Safety Standards. of the Nuclear Safety Standards Commission (KTA)

Periodic Survey of Fuel Installations on Ships other than Liquefied Gas Carriers utilizing gas or other low flash point fuels

1.2 Example 1: A simple hydraulic system

FUNDAMENTAL SAFETY OVERVIEW VOLUME 2: DESIGN AND SAFETY CHAPTER I: AUXILIARY SYSTEMS 2. VOLUME AND CHEMICAL CONTROL (RCV [CVCS])

Periodical surveys of cargo installations on ships carrying liquefied gases in bulk

Transient Analyses In Relief Systems

Requirements for Reduced Supervision of Power Plants, Thermal Liquid Heating Systems, and Heating Plants

Level MEASUREMENT 1/2016

Containment Structure Performance as Controlled by Penetrations and Extensions

Review and Assessment of Engineering Factors

LUMAZOTE T ECHNICAL BRO CHU RE

LECTURE 9 1. CARE AND PRECAUTION OF X-RAY TUBE 2. X-RAY TUBE AGING KAAB

The «practical elimination» approach for pressurized water reactors

ANNEX AMENDMENTS TO THE INTERNATIONAL CODE FOR FIRE SAFETY SYSTEMS (FSS CODE) CHAPTER 15 INERT GAS SYSTEMS

Heat Pump Connections and Interior Piping

CHEMICAL ENGINEERING LABORATORY CHEG 239W. Control of a Steam-Heated Mixing Tank with a Pneumatic Process Controller

INSTRUMENTATION EQUIPMENT

Gerald D. Anderson. Education Technical Specialist

CHAPTER 7: THE FEEDBACK LOOP

RULES PUBLICATION NO. 119/P

Impact of imperfect sealing on the flow measurement of natural gas by orifice plates

Pressure Systems Safety Regulation

NEW PROGRAM! OIL AND GAS TECHNOLOGY PROGRAM

Safety Manual VEGAVIB series 60

FUNDAMENTAL SAFETY OVERVIEW VOLUME 2: DESIGN AND SAFETY CHAPTER I: AUXILIARY SYSTEMS. A high-capacity EBA system [CSVS] [main purge]

STICTION: THE HIDDEN MENACE

AC : MEASUREMENT OF HYDROGEN IN HELIUM FLOW

Safety Engineering - Hazard Identification Techniques - M. Jahoda

IAEA SAFETY STANDARDS for protecting people and the environment

-. 30ýv. Entergy ARKANSAS NUCLEAR ONE - UNIT I IMPROVED TECHNICAL SPECIFICATIONS SUBMITTAL. 05/01101 Supplement Volume 2 of 2. (Sections 3.7 and 3.

HEALTH AND SAFETY EXECUTIVE HM NUCLEAR INSTALLATIONS INSPECTORATE

Implementing IEC Standards for Safety Instrumented Systems

Cable in Conduit Conductor (CICC) quench modelling

Design DSA Steam-Atomized Desuperheater

Section 1: Multiple Choice

Instrumentation & Data Acquisition Systems

EMERGENCY CORE COOLING SYSTEM SIMPLIFICATION

M-06 Nitrogen Generator (Nitrogen Making Machine)

Safety Manual VEGAVIB series 60

FUNDAMENTAL SAFETY OVERVIEW VOLUME 2: DESIGN AND SAFETY CHAPTER F: CONTAINMENT AND SAFEGUARD SYSTEMS 7. CONTAINMENT HEAT REMOVAL SYSTEM (EVU [CHRS])

THE NITROGEN INJECTION THREAT IN PWR REACTORS

(C) Anton Setzer 2003 (except for pictures) A2. Hazard Analysis

Ultima. X Series Gas Monitor

RESOLUTION A.567(14) adopted on 20 November 1985 REGULATION FOR INERT GAS SYSTEMS ON CHEMICAL TANKERS

1 SE/P-02. Experimental and Analytical Studies on Thermal-Hydraulic Performance of a Vacuum Vessel Pressure Suppression System in ITER

Experimental Verification of Integrated Pressure Suppression Systems in Fusion Reactors at In-Vessel Loss-of -Coolant Events

Design, Implementation, and Verification of a Reactor Protection System Using HFC6000

29 Pressure, Temperature relationship of a gas

DEVICES FOR FIELD DETERMINATION OF WATER VAPOR IN NATURAL GAS Betsy Murphy MNM Enterprises 801 N. Riverside Drive Fort Worth, Texas 76111

MIL-STD-883G METHOD

Hazard Operability Analysis

Safety Manual. Process pressure transmitter IPT-1* 4 20 ma/hart. Process pressure transmitter IPT-1*

CSO/STORMWATER MANAGEMENT. HYDROVEX HHV-E Vortex Driven Regulator

Profile LFR-43 HELENA ITALY. Italian National Agency for New Technologies, Energy and Sustainable Economic Development, C.R. ENEA Brasimone, Italy

INTRODUCTION. The Quantum Technology system has the following advantages:, as it does not need plastic gas-bags which are volume-consuming,

3.0 Pressure Transmitter Selection

Workshop Information IAEA Workshop

Maintenance handbook

GAS SYSTErv' At~t~ULUS OBJECTIVES: Approval Issue. <=> Page 3. <=> Pages 3-4. <=> Page 4. <=> Page 5. <=> Pages 6 7. <=> Pages 7-8.

MDEP Common Position No AP

UKEPR Issue 01

SAFETY APPROACHES. The practical elimination approach of accident situations for water-cooled nuclear power reactors

better measurement Simply a question of SCHMIDT Flow Sensor SS The cost-effective alternative in pressurised systems up to 10 bars.

SEBIM PILOT OPERATED TANDEMS A NEW SOLUTION FOR DARLINGTON NGS BLEED CONDENSER RELIEF VALVES. HORST PAETZOLD Ontario Hydro Nuclear - Darlington NGD

IAEA SAFETY STANDARDS for protecting people and the environment

Nuclear Safety. Module 3 DEFENSE IN DEPTH. Reacu03.ppt. Slide!

The Relationship Between Automation Complexity and Operator Error

Loss of Normal Feedwater Analysis by RELAP5/MOD3.3 in Support to Human Reliability Analysis

Calibration Requirements for Direct Reading Confined Space Gas Detectors

A large Layer of Protection Analysis for a Gas terminal scenarios/ cause consequence pairs

The API states the following about tube rupture for a shell-and-tube heat exchangers:

Transcription:

Chapter 12 SHUTDOWN SYSTEMS: SDS1 AND SDS2 12.1 INTRODUCTION Up to this point we have looked with great details at the reactor regulating system. In order to better understand the overall design of a CANDU type reactor, it is necessary to discuss the two shutdown systems. Contrary to RRS, the shutdown systems are not "active". Either they are fired, or they are not fired; and most of the time they are nor fired...). The firing of the shutdown systems occurs when certain parameters exceed some pre-established setpoints determined by the designer, either during the design stage, or by ulterior analyses showing that changes are required. The setpoints can be classified in two main categories. Some are fixed, and never change values. Other setpoint values will vary continuously, depending on the values of other parameters. These variable setpoints are called "conditioned parameters". Generally, the fixed value parameters will act directly on system relays, whereas the conditioned parameters pass through an electronic device, the "Programmable Numerical Comparators", CNP, before acting on the relays. The mission of the emergency shutdown systems is to diminish rapidly the reactor power during abnormal conditions which could otherwise lead to undesirable states such as fuel failure, channel failure and the liberation of fission products. Thus the emergency shutdown systems are there to insure public safety in all circumstances. 73

J. KoclaB: Reactor Control and Simulation 74 Each CANDU reactor hab two emergency shutdown systems, SDSI and SDS2, completely independent of each other. They are also very different by design and by their intervention mode. There is no dependence of these systems on the actions of RRS. Each of the shutdown systems must be able, by itself, to stop the neutron chain reaction during any accident condition. A further requirement is that the safety analyses used to show this capacity must be performed with part of the system impaired. For SDS1, the two most effective rods, on a total of twenty eight, are absumed to stay out of core. For SDS2, the most effective injection line out of six is assumed dead. 12.2 TWO OF THREE LOGIC In order to reduce the number of unnecessary firings, a two out of three logic is used by each of the shutdown systems. Each shutdown parameter is related to three measuring devices, and each of these devices is associated to one of three electrical chains of the shutdown system. When a reading passes its setpoint, a relay logic acts to open the electric circuit. This chain of the SDS is then said to be "opened". Two such chains of an SDS must be opened for the firing of the SDS. Generally, the transmitter signals go through an anlplifier. As long as the transmitter signal is below its setpoint, the amplifier emits a current sufficiently strong to maintain a relay in an excited state (closed state). When the setpoint is reached, this current is cut, and the relay cannot stay excited. It opens, and consequently opens the chain on which its contact is placed. There is no more current circulating on this chain. If another chain of the SDS eventually opens, the current maintaining the clutch of the shutoff rods would be cut, and the rods would fall in the core (SDS1). In the case of SDS2, it is the the valve system that would be opened forcing the liquid poison into the core. This relay logic is shown graphically on Figure 12.l. Another advantage of the two out of three logic is to permit the verification, by frequent tests, of the availability of different parts of the system, from transmitters up to the last relays of the SDS chains. These tests are performed on one chain at a time, which permits to complete these verifications at regular prescribed intervals, without compromising the energy production, since two chains remain closed during these tests.

J. Koc1as: Reactor Control and Simulation 75 12.3 SDS1 SDSl acts by inserting very rapidly twenty eight very absorbing shutoff rods. These are normally out of core, next to the reactivity device deck. They are kept out of core by a stainless steel cable, and compress a spring, which will assist the rods in their descent into the core. The cable is rolled on a pulley whose axis is blocked by a braking system consisting of an electromagnetic clutch. An electric current is necessary to maintain these brakes on the pulley axis. Iftwo chains of SDS 1 open, this current does not circulate anymore, the brakes are opening, and the shutoff rods are propulsed into the core. These brakes are normally opened, and the current is necessary to keep them closed: this is part of the fail safe design. The three chains of SDSI are the chains D,E and F. For each shutdown parameter, there is at least one transmitter on each of these chains. There are thus three readings for the instrumentation for each parameter. SDSI checks eleven parameters, Those related to neutronics are: Log rate of ion chambers D,E and F : setpoint 10% /second High neutron power (ROP) : setpoint 122% FP There are also parameters such as manual firing, high or low pressure of the primary coolant, high reactor building pressure... 12.4 SDS2 The mode of action of SDS2 is to rapidly insert in the reactor core, in the moderator, a large quantity of liquid poison, a solution of gadolinium nitrate, which is a strong absorber of thermal neutrons. This liquid poison is a solution of Gadolinium nitrate and heavy water whose concentration is maintained at 8000 ppm. There are six tanks of liquid poison, three above reactor center, and three below center. Each tank is connected to a piping circuit, penetrating the core horizontally. These tubes are pierced by circular openings, permitting the liquid poison to flow into the moderator when injected. Each tank is kept at the moderator cover gas pressure of about 200 KPa. In these conditions, there is a natural boundary between the moderator and the liquid poison solution. This boundary is usually outside the core.

J. Koc1as: Reactor Control and Simulation 76 When there is firing of SOS2, the electrical current necessary to keep the valves of a high pressure Helium circuit is cut. The Helium, contained in a tank, is at a pressure greater than 8MPa. Once the valves opened, there is a great force applied on the liquid in the poison tanks. This liquid is then inject at very high speed in the core, and is propulsed in the moderator in the form of conical jets. A floating sphere in the liquid tanks follow the liquid level as it is reduced, and blocks the outgoing pipe when it reaches the bottom. The output of the tank will be stopped, preventing the entry of high pressure helium gas in the moderator. The two out of three relay logic is also used for SOS2. Relays are kept in excited states until setpoints are reached. The SOS2 chains are G,H, and J. As for SOSI, there will be one transmitter per SOS2 chain. These transmitters are not the same as those of SOSl. SOS2 is completely independent of SOSl. SOS2 keeps watch on 10 parameters, two of which are related to neutronics, Log rate of ion chambers G,H and J : setpoint of 15%/second High neutron power (ROP) : setpoint of 122% FP Finally, it takes about twenty four hours to remove the liquid poison from the moderator, after that the condition that caused SOS2 firing has been cleared. This is done by a moderator purification circuit using ion exchange resins to separate the heavy water and gadolinium nitrate. This purification circuit is automatically closed when there is an emergency reactor shutdown. 12.5 ROP SYSTEM The regional overpower,rop, system groups the SOSI and SOS2 high neutron power parameters. SOSI has thirty four Platinum flux detectors distributed in the core. Each detector is assigned to a chain, O,E or F, of SOSl. The setpoint, identical for each detector is fixed at 122% FP. SOS2 has twenty three Platinum detectors, placed horizontally, in the core. Each of them is assigned to one of the chains, G, H or J, of SOS2. Of these, twenty two have a fixed setpoint of 122% FP, while the centrally located SOS2 detector has a setpoint of 128.3% FP.

J. Koc1as: Reactor Control and Simulation 77 The aim of the ROP system is to prevent fuel damage during postulated slow losses of regulation. In order to prevent center line fuel melting, the detector setpoints have been such that critical heat flux, related to departure from nucleate boiling, is not reached. The power at such a channel reaches critical heat flux is the critical channel power. It's exact value depends on both neutronic and thermal hydraulic conditions of each channel. The detector setpoints are determined by postulating and analyzing a large number of perturbed states of the core (more than 700) with design codes. These perturbed states are obtained by displacing the various reactivity devices, individually and in combinations. A slow loss of regulation is then supposed to occur. The power is increased until a channel reaches critical power. The detector setpoints is then chosen such that there are no channels reaching critical power before ROP detection on two out of three channels. An interesting aspect of ROP comes from the three daily calibrations of the detectors belonging to this system. A major part of this calibration is due to the local power variations induced by on-power refueling. The studies mentioned in the previous paragraphs are performed with time averaged nuclear properties for the fuel. These are much smoother than the instantaneous state of the core. In order to take the power ripple effects due to the refueling, calculations are performed frequently to determine the ratio between instantaneous channel powers and the time average channel powers. This ratio is called the Channel Power Peaking Factor, or the CCPF. The maximum of this ratio over all channels, the CPPFmax is retained and used to multiply, and thus increase,the individual ROP detector readings by means of the amplifiers. Generally speaking, the CPPFmax has a value of about 107% to 110% FP, which reduces the margin to the setpoints. There are also other correction factors to take into account, such as due to an increasing temperature at the inlet headers, produced by steam generator heat transfer degradation; this reduces the channel critical heat fluxes. The ROP margin is then reduced. The choice of channels to refuel then becomes a delicate matter if plant plant power is not to be reduced.

J. Koc1as: Reactor Control and Simulation 78-48Vcc 30-90Vcc +90Vcc --0 2D 30 3E 4F 40 30 3E 4F 40 --0 10 3F 4E 3F 4E Clutch 48Vcc o Relay :z: RelayContact Figure 12.1: Simplified Example of two of three relay logic of SOSI

2024 © sportdocbox.com Privacy Policy | Terms of Service | Feedback