NNR Regulatory Position on FPGA Based Digital I&C Systems

Similar documents
Role of I&C Conceptual Design in NPP Licensing

Nuclear power aspects ITU/ENISA Regional Conference on Cybersecurity, Sofia

COMPUTER SECURITY DESIGN METHODOLOGY FOR NUCLEAR FACILITY & PHYSICAL PROTECTION SYSTEMS

UK EPR GDA PROJECT. Name/Initials Date 30/06/2011 Name/Initials Date 30/06/2011. Resolution Plan Revision History

Continuous protection to reduce risk and maintain production availability

Status of Cyber Security Implementation at Canadian NPPs

Development of a new IEC Standard on Cybersecurity Controls for I&C in Nuclear Power Plants IEC 63096

A NEW INTERNATIONAL STANDARD ON CYBERSECURITY FOR NUCLEAR POWER PLANTS: IEC CYBERSECURITY REQUIREMENTS

COMPASS FOR THE COMPLIANCE WORLD. Asia Pacific ICS Security Summit 3 December 2013

nuclearsafety.gc.ca Implications of the Fukushima Daiichi Accidents for the New Builds Design Requirements in Canada

Report on Current IAEA I&C Projects For Research Reactors May By Charles R Morris RR Section of NEFW

IEC 62859: TOWARDS AN INTERNATIONAL STANDARD ON THE COORDINATION BETWEEN SAFETY AND CYBERSECURITY FOR NUCLEAR I&C SYSTEMS

Plant Security Services Protecting productivity in the digital era October

Modernization of TRR Control Rod Mechanisms Driving System Based on FPGA

GUIDANCE ON THE SECURITY ASSESSMENT OF GENERIC NEW NUCLEAR REACTOR DESIGNS

Cyber Security Requirements for Supply Chain. June 17, 2015

Improved Situational Awareness with OSIsoft PI for the U.S. Nuclear Regulatory Commission (NRC)

Cyber Security of FPGA-Based NPP I&C Systems: Challenges and Solutions

A Diversity Model for Multi-Version Safety-Critical I&C Systems

Disclaimer Executive Summary Introduction Overall Application of Attachment Generation Transmission...

Cyber Security Solutions Mitigating risk and enhancing plant reliability

Standard Development Timeline

ARC VIEW. Critical Industries Need Active Defense and Intelligence-driven Cybersecurity. Keywords. Summary. By Sid Snitkin

Progress of the UAE Nuclear Power Program -Regulator s Perspective

Standard CIP Cyber Security Critical Cyber As s et Identification

Continuous Monitoring and Incident Response

IAEA Programme on Instrumentation and Control System Design and Engineering for Operating NPPs

A New Approach For Assessing Operational Nuclear Security Performance. An Overview

The evolution of the cookbook

Hardline. Non-programmed safety I&C platform dedicated to nuclear safety.

The exida. IEC Functional Safety and. IEC Cybersecurity. Certification Programs

OPUC Workshop March 13, 2015 Cyber Security Electric Utilities. Portland General Electric Co. Travis Anderson Scott Smith

Cyber Security of Industrial Control Systems and Potential Impacts on Nuclear Power Plants

Medical Device Cybersecurity: FDA Perspective

Improving the Security of Radioactive Sources in Industrial Radiography in South East Asia

OFFICIAL COMMISSIONING OF SECURITY SYSTEMS AND INFRASTRUCTURE

ELECTRICAL, INSTRUMENTATION & CONTROL SYSTEMS

Instrumentation, Controls, and Automation - Program 68

Industrial Defender ASM. for Automation Systems Management

TIMED-FAULT TREE GENERATION FROM DYNAMIC FLOWGRAPH METHOD

Courses. X E - Verify that system acquisitions policies and procedures include assessment of risk management policies X X

This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective.

FERC Hydroproject Cyber Security [FERC 3A Section 9 versus CIP v5]

Present Status of Development of the NuScale SMR

A Technique for Demonstrating Safety and Correctness of Program Translators : Strategy and Case Study

Canada Nuclear Program Instrumentation and Control 2017 IAEA TWG-NPPIC Meeting, Vienna, Austria Lawrence Yu

Security Informed Safety Assessment of Industrial FPGA-Based Systems

Multilateral Arrangements in Safety, Licensing & Regulations Capacity Building for Nuclear Safety and Security

Standard CIP Cyber Security Critical Cyber As s et Identification

Westinghouse UK AP1000 GENERIC DESIGN ASSESSMENT. Criticality control in SFP. Radwaste and Decommissioning

IAEA Activities under the Nuclear Safety Action Plan

Protecting productivity with Industrial Security Services

Cyber Risk and Networked Medical Devices

Cybersecurity. Sarabjit Purewal Principal Specialist Inspector BSc ACGI PGDip CEng MIET. Humber Chemical Focus Group 21 July 2016

Defense-in-Depth & Diversity (D3) Charles Kim Electrical and Computer Engineering Howard University

Risk Informed Cyber Security for Nuclear Power Plants

Control System Security for Social Infrastructure

Supplemental Information

IAEA Division of Nuclear Security

Chapter 18 SaskPower Managing the Risk of Cyber Incidents 1.0 MAIN POINTS

Cyber Security for Process Control Systems ABB's view

Secure Product Design Lifecycle for Connected Vehicles

Cybersecurity and Data Protection Developments

PLC COURSE LIST NMU TRAINING CENTRE

PSEG Nuclear Cyber Security Supply Chain Guidance

The future of nuclear is here

Reliability Standard Audit Worksheet 1

The Small Modular Reactor

Implementation of Computer Security Measures into existing Physical Protection Strategies in Germany

Industrial Security - Protecting productivity. Industrial Security in Pharmaanlagen

S1.1: RESEARCH AND DEVELOPMENT IN EUROPE FOR COMPETITIVE MANUFACTURING. Competitiveness of Industry by means of Cross Fertilisation

Standard Development Timeline

PROCESS SAFETY from POINT A to POINT Zed

The Application of FPGA-based FitRel Platform in Nuclear Power Plant Diverse Actuation System. Yinjie Chen China Techenergy Co., Ltd (CTEC) Dec 2017

Navigating Regulatory Issues for Medical Device Software

Smart Grid Standards and Certification

Information technology Security techniques Information security controls for the energy utility industry

ELECTRIC POWER SYSTEM

Texas Reliability Entity, Inc. Strategic Plan for 2017 TEXAS RE STRATEGIC PLAN FOR 2017 PAGE 1 OF 13

Expert support and Reach back activities

Application of FPGA technology in NicSys8000N platform. Liu Zhikai Oct. 14,2015

Cybersecurity Vulnerabilities and Process Frameworks for Oil and Gas

NEI [Revision 5] Cyber Security Control Assessments

Digitalization of Nuclear Power Plants at EDF

Network Configuration Document Selection for New Substations Framework

ANZSCO Descriptions The following list contains example descriptions of ICT units and employment duties for each nominated occupation ANZSCO code. And

Jean-Paul BOUARD IEC/SC45A Secretary. TWG NPPIC meeting May 2017 IAEA, Vienna (Austria)

LESSONS LEARNED IN SMART GRID CYBER SECURITY

Updates to the NIST Cybersecurity Framework

IECEx Guide Guidance for Applications from Service Facilities seeking IECEx Certification

Cybersecurity Presidential Policy Directive Frequently Asked Questions. kpmg.com

GDA Step 2 Assessment of Security for Generic Design Assessment of Hitachi GE s UK Advanced Boiling Water Reactor (UK ABWR) OFFICIAL

Trends in Cybersecurity in the Water Industry A Strategic Approach to Mitigate Control System Risk

CIP Cyber Security Standards. Development Update

Siemens view and approach on critical infrastructure resilience against cyberthreats Joint OECD-JRC Workshop, Paris September 2018

The Fukushima accident Consequences for Japan and France

Safety of Nuclear Installations

Knowledge Management in Licensing & Design Bases. Thomas Koshy, Head Nuclear Power Technology Development Division of Nuclear Power

IAEA Perspective: The Framework for the Security of Radioactive Material and Associated Facilities

GNSSN. Global Nuclear Safety and Security Network

Transcription:

NNR Regulatory Position on FPGA Based Digital I&C Systems Gerard Lekhema National Nuclear Regulator - South Africa 11th International Workshop on Application of FPGAs in Nuclear Power Plants 8 11 October 2018, Dallas, Texas, USA 1

Contents 1. Introduction 2. NNR Regulatory Framework 3. FPGA Based Digital I&C Systems 4. Regulatory Position on FPGA Based Systems 5. Conclusion 2

Introduction The NPP Regulated by NNR - Koeberg 2 Units each rated at: 921 MW e (net) Commercial operation since 1984 & 1985 Analogue I&C Safety Systems (i.e. RPS) Digital I&C safety related systems (i.e. Reactivity control) Expected Digital I&C for Safety Systems: Upgrades and Modifications Koeberg Plans to extend operating License by another 20 years (Ageing Management and long-term operation) New build Shelved beyond 2030 as per draft IRP-2018 (Nuclear site license application ongoing) 3

Regulatory Framework NNR Act, Regulations Regulatory Requirements, Regulatory Directives and Policies Regulatory Guides, Position Papers ** Technical Reports ( review and research reports) Compliance Assurance Reports (Inspections, audit and Surveillance reports), Safety Evaluation Reports, Letters ** PP-0017: Design and Implementation of Digital I&C for Nuclear Installations - 2014 ** RG-0014: Guidance on Implementation of Cyber or Computer Security for Nuclear Facilities - 2015 4

FPGA Based Digital I&C Systems Some of the upgrades and new build are expected to be fitted with digital I&C for Systems important to Safety. Weaknesses of software-based systems (i.e. PLCs, DCS): complexity, credible common cause failures, etc. Increasing trend in use of FPGA based systems. NNR participates in information sharing platforms (MDEP DICWG, Conferences, etc.) and references international standards and guides, in preparation for anticipated FPGA based digital I&C modifications/new builds. 5

FPGA Architecture FPGA is a hardware description language programmable integrated circuit comprised of: Configurable logic blocks (CLB) Programmable input/output (I/O) Programmable interconnection grid Application data memory RAM BLOCK RAM BLOCK RAM BLOCK RAM BLOCK Random Access Memory Interconnection Grid 6

FPGA Advantages and Challenges Advantages Lower Complexity, simpler V&V, faster response time, module-formodule replacement Parallel Processing Capabilities Reduced vulnerability to cybersecurity threats Longer availability of technical support Less prone to obsolescence due to greater application portability Challenges Relatively few NPP applications with limited operating experience Limited availability of products and tools Specialized design expertise required Development process similar to software-based systems and thus subject to same logic errors Increasing complexity with IP cores results in 100% testing difficult to achieve 7

Addressing FPGA Challenges Simplicity in design only features beneficial to safety should be included. Application of diversity and defense-in-depth for protection against credible common cause failures Standardized development life-cycle and quality assurance plan (i.e. IEC 62566): Requirements specifications, preliminary design, design, implementation, system integration and system validation 8

FPGA Development Life-Cycle Final Product Properties: Functional, etc. Review Validation Test Report Review Evaluation of compliance with requirements Architecture: Modules, Libraries, IP Cores, etc. RTL Description (HDL Code): Behavioural description with coding rules Synthesis, Place & Route, chip configuration Review Testing Simulation Chip Placement on Circuit Board and connections to other system components Behavioural Simulation, Timing Analysis, Testing *IEC 62566, IAEA NP-T-3.17, SSG-39 9

NNR Regulatory Position NNR Position is derived from the generic position paper PP-0017 on digital I&C systems and reg. guide RG-0014 on cyber security. The FPGA based digital I&C system is suitable for important to safety application. NNR strongly prefers hardware-based backup system in order to fulfil diversity and defense-in-depth requirements for protection against common cause failures. The FPGA system should be developed under a nuclear safety and quality management program that addresses the entire life-cycle of the FPGA system. The pre-developed/commercial-grade items (i.e. IP cores, software tools, application memories, etc.) should undergo an approved nuclear quality assurance program. 10

NNR Regulatory Position cont. The use of FPGA with Intellectual Property (IP) cores in important-to-safety applications should be avoided to prevent unnecessary complexity. Reference standards and guides: IEC 62566, IEEE 7-4.3.2-2010, IAEA SSG-39, IEC 60880, IEC 60987 The less prescriptive regulatory approach of NNR specifies that the authorization holder/applicant should compile a safety case using best suited standards that represent good engineering practice. The NNR makes determination as to whether the justification is adequate. 11

Analogue Channels VR Speed Sensors Power Range Ion- Chambers PT 100 Temp Sensors Example of FPGA Based Application Signal Processing Racks 2 2 2 Interlocks 1 Plant Recorder Alarms Processor 1 Reactor Protection System - Ageing analogue processing modules - Trips due to internal faults Reactor Trip High Flux-Rate FPGA Based Passive Speed Sensors Processing modules Reliability Improvement, self-diagnostic features 12

Conclusion The FPGA based digital I&C system is simpler compared with microprocessor-based system. Experience and information from the progressive FPGA based modernization/new build projects will assist NNR in making regulatory decision for anticipated FPGA based projects in South Africa. 13

THANK YOU Gerard Ratoka Lekhema Analyst - NPP Assessments Department National Nuclear Regulator South Africa Phone: +27 (12) 674 7157 Mobile: +27 (83) 667 2138 Email: glekhema@nnr.co.za Eco Glade Office Park I Eco Glades Office 2 Block GI 420 Witch Hazel Avenue I Centurion P. O. Box 7106 I Centurion I 0046 I South Africa 14

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback