Role of I&C Conceptual Design in NPP Licensing

Similar documents
ISO/IEC ISO/IEC

Predstavenie štandardu ISO/IEC 27005

ISA99 - Industrial Automation and Controls Systems Security

SPECIFIC PROVISIONS FOR THE ACCREDITATION OF CERTIFICATION BODIES IN THE FIELD OF INFOR- MATION SECURITY MANAGEMENT SYSTEMS (ISO/IEC 27001)

ISO / IEC 27001:2005. A brief introduction. Dimitris Petropoulos Managing Director ENCODE Middle East September 2006

NNR Regulatory Position on FPGA Based Digital I&C Systems

Industrial Security - Protecting productivity IEC INDA

IAEA Programme on Instrumentation and Control System Design and Engineering for Operating NPPs

Information technology Security techniques Requirements for bodies providing audit and certification of information security management systems

John Snare Chair Standards Australia Committee IT/12/4

COMPUTER SECURITY DESIGN METHODOLOGY FOR NUCLEAR FACILITY & PHYSICAL PROTECTION SYSTEMS

Mark Hofman SANS Institute/Shearwater Solutions

SC27 WG4 Mission. Security controls and services

Information technology Security techniques Information security controls for the energy utility industry

INTERNATIONAL STANDARD

Networks - Technical specifications of the current networks features used vs. those available in new networks.

ISA99 - Industrial Automation and Controls Systems Security

_isms_27001_fnd_en_sample_set01_v2, Group A

IAF Mandatory Document KNOWLEDGE REQUIREMENTS FOR ACCREDITATION BODY PERSONNEL FOR INFORMATION SECURITY MANAGEMENT SYSTEMS (ISO/IEC 27001)

Accreditation programme for management systems certification bodies NAR IRT Edition 2

ISO/IEC Information technology Security techniques Code of practice for information security controls

ISO/IEC INTERNATIONAL STANDARD

ISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Information security risk management

Conformity assessment Requirements for bodies providing audit and certification of management systems. Part 6:

APPROVAL SHEET PROCEDURE INFORMATION SECURITY MANAGEMENT SYSTEM CERTIFICATION. PT. TÜV NORD Indonesia PS - TNI 001 Rev.05

Chapter 18 SaskPower Managing the Risk of Cyber Incidents 1.0 MAIN POINTS

ISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Information security management systems Overview and vocabulary

Development of a new IEC Standard on Cybersecurity Controls for I&C in Nuclear Power Plants IEC 63096

KENYA ACCREDITATION SERVICE

MEASURES TO ENHANCE MARITIME SECURITY. Cyber risk management in Safety Management Systems. Submitted by United States, ICS and BIMCO SUMMARY

ISO/IEC JTC 1/SC 27 N7769

An Overview of ISO/IEC family of Information Security Management System Standards

EA-7/05 - EA Guidance on the Application of ISO/IEC 17021:2006 for Combined Audits

SPECIFIC PROVISIONS FOR THE ACCREDITATION OF CERTIFICATION BODIES IN THE FIELD OF FOOD SAFETY MANAGEMENT SYSTEMS

UK EPR GDA PROJECT. Name/Initials Date 30/06/2011 Name/Initials Date 30/06/2011. Resolution Plan Revision History

Supply Chain Services for Nuclear Power Plants: How to build and control the supply chain

ISO/IEC Information technology Security techniques Code of practice for information security management

standards and so the text is not to be used for commercial purposes, gain or as a source of profit. Any changes to the slides or incorporation in

Accreditation Criteria For Conformity Assessment Bodies

Information Technology Branch Organization of Cyber Security Technical Standard

Inhalt. Description of Certification Procedure ISO 22000, HACCP and DIN 15593

Security Standardization

Nuclear power aspects ITU/ENISA Regional Conference on Cybersecurity, Sofia

Dr. Emadeldin Helmy Cyber Risk & Resilience Bus. Continuity Exec. Director, NTRA. The African Internet Governance Forum - AfIGF Dec 2017, Egypt

A NEW INTERNATIONAL STANDARD ON CYBERSECURITY FOR NUCLEAR POWER PLANTS: IEC CYBERSECURITY REQUIREMENTS

IAEA Perspective: The Framework for the Security of Radioactive Material and Associated Facilities

ISO9001:2015 LEAD IMPLEMENTER & LEAD AUDITOR

Final Report of TF-CS/OTA

Introduction to ISO/IEC 27001:2005

Information technology Guidelines for the application of ISO 9001:2008 to IT service management and its integration with ISO/IEC :2011

Suppliers Qualification to Ensure Nuclear & Radiation Safety Requirements in Newcomer Countries

ISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Information security risk management

ISO/IEC INTERNATIONAL STANDARD

Information technology Security techniques Information security controls for the energy utility industry

Policies and Procedures Date: February 28, 2012

Discontinuing the Metallic Handcuffs Compliance Testing Program and Request for

COMPASS FOR THE COMPLIANCE WORLD. Asia Pacific ICS Security Summit 3 December 2013

Frequently Asked Questions

ISO/IEC TS Conformity assessment Guidelines for determining the duration of management system certification audits

Software engineering Guidelines for the application of ISO 9001:2008 to computer software

IEC 62859: TOWARDS AN INTERNATIONAL STANDARD ON THE COORDINATION BETWEEN SAFETY AND CYBERSECURITY FOR NUCLEAR I&C SYSTEMS

Global Wind Organisation CRITERIA FOR THE CERTIFICATION BODY

Information technology Service management. Part 10: Concepts and vocabulary

DOD Medical Device Cybersecurity Considerations

Siemens view and approach on critical infrastructure resilience against cyberthreats Joint OECD-JRC Workshop, Paris September 2018

CRITERIA FOR CERTIFICATION BODY ACCREDITATION IN THE FIELD OF RISK BASED INSPECTION MANAGEMENT SYSTEMS

Integration Technologies Group, Inc. Uncompromising Performance

Cyber Security Standards Developments

FSSC Information Day 2014 Integrity Program

AUDITOR / LEAD AUDITOR PHARMACEUTICAL AND MEDICAL DEVICE INDUSTRY

Cyber Security Requirements for Supply Chain. June 17, 2015

ISO COMPLIANCE GUIDE. How Rapid7 Can Help You Achieve Compliance with ISO 27002

Standard Development Timeline

Cyber Security of FPGA-Based NPP I&C Systems: Challenges and Solutions

ISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Code of practice for information security management

GUIDE 63. Guide to the development and inclusion of safety aspects in International Standards for medical devices

PRODUCT CERTIFICATION SCHEME FOR MECHANICAL-CUSTOMIZED VEHICLES

ISO/IEC INTERNATIONAL STANDARD. Information technology Software asset management Part 1: Processes and tiered assessment of conformance

Raad voor Accreditatie (Dutch Accreditation Council RvA)

B C ISO/IEC TR TECHNICAL REPORT

Standard CIP Cyber Security Electronic Security Perimeter(s)

Cybersecurity & Privacy Enhancements

Standard CIP Cyber Security Systems Security Management

ISO/IEC TR TECHNICAL REPORT

Procedure for Network and Network-related devices

Standard CIP Cyber Security Security Management Controls

ISO/IEC TR TECHNICAL REPORT. Information technology Security techniques Information security management guidelines for financial services

This document is a preview generated by EVS

Standard CIP Cyber Security Incident Reporting and Response Planning

PRODUCT CERTIFICATION SCHEME FOR WATER PRODUCTS

Why you should adopt the NIST Cybersecurity Framework

Plant Security Services Protecting productivity in the digital era October

RELATIONSHIP BETWEEN THE ISO SERIES OF STANDARDS AND OTHER PRODUCTS OF ISO/TC 46/SC 11: 1. Records processes and controls 2012

Procedure for Issue and Withdrawal of Certificates

WELCOME ISO/IEC 27001:2017 Information Briefing

ERO Enterprise Strategic Planning Redesign

ISO/IEC JTC 1 N 13145

Insider Threat Detection Including review of 2017 SolarWinds Federal Cybersecurity Survey

La certificazione ISO27001

Guidelines 1/2018 on certification and identifying certification criteria in accordance with Articles 42 and 43 of the Regulation 2016/679

Transcription:

Role of I&C Conceptual Design in NPP Licensing RASU Deputy Design Division Director, Head of Subdivision Galivets Eugeniy Moscow October, 2016

Abstract Currently, modern NPP construction projects face new challenges related to satisfying requirements of constantly improving nuclear codes and standards as well as demanding EPC-contracts. In order to overcome risks related to violation of deadlines and possibilities of significant I&C architecture redesign during approval of design documentation, it is suggested to split design documentation into two major parts, that is, conceptual design and basic design. This stages are also mentioned in standards Russian GOST 34.601 and IEC 61513. 2

International Standards International standardization bodies (mainly IEC and ISO) developing and issuing international standards for all electrical, electronic and related technologies, including nuclear one, regularly revise them and release new versions of standards. 3

ISO/IEC 27000-series " Information security management systems" This group of standards from ISO27000 was published in recent 5 years: ISO/IEC 27000 Information security management systems Overview and vocabulary ISO/IEC 27002 Code of practice for information security management ISO/IEC 27007 Guidelines for information security management systems auditing (focused on the management system) ISO/IEC TR 27008 Guidance for auditors on ISMS controls (focused on the information security controls) ISO/IEC 27010 Information security management for inter-sector and inter-organizational communications ISO/IEC 27013 Guideline on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1 ISO/IEC 27033-1 Network security - Part 1: Overview and concepts ISO/IEC 27033-3 Network security - Part 3: Reference networking scenarios - Threats, design techniques and control issues ISO/IEC 27034-1 Application security - Part 1: Guideline for application security ISO/IEC 27037 Guidelines for identification, collection, acquisition and preservation of digital evidence 4

International Standards The real new challenge is recently released cyber security standards for nuclear power plants. IEC 62645 Nuclear power plants Instrumentation and control systems Requirements for security programs for computer-based systems 2014 IEC 62859 Ed.1: Nuclear power plants - Instrumentation and control systems - Requirements for coordinating safety and cybersecurity. -2016 As a result, there is no NPP project, which is designed according to these modern standards. 5

Nuclear Codes The greatest risk for NNP (and I&C) licensing process is updated and revised nuclear codes (the requirements of regulatory bodies). Both Russian VVER projects in Europe, Paks-II and Hanhikivi-1 NPPs, have risks related to renewal of nuclear codes. - Finland s regulatory body updated 11 of 46 YVL Guides since 2013. - Hungary s regulatory body is going to release new Nuclear Safety Code. - Russia s regulation body updated NP-001-15 «General Safety Provisions for Nuclear Power Plants» and new NP-082-07 «Nuclear safety rules for reactor installations of nuclear power plants» is expecting. All VVER projects without construction licenses are suffering from these improvements. 6

New YVL Guides 7

New Regulation from STUK 8

Impact on Licensing Certainly, design documentation for construction licensing application (PSAR, PSA, Basic Design) will be accessed for compliance with rules and regulations. Errors and inconsistencies will have significant influence on project schedules and costs. 9

Impact on Licensing Risk of declining construction license application could be significantly reduced in case when a part of documentation submitted for analysis and approval in advance. In this case, the scope of information should be enough to evaluate architectural approach and safety criteria assessment (diversity, redundancy, independence). 10

Conceptual Design Conceptual design documents contains technical solutions description for limited scope of I&C design aspects, like defense-in-depth or power supply. Moreover, these technical solutions should be described in a platform independent manner and does not take into account platform or project specific aspects, like a subsystem structure. This improvement will speed up the whole design process due to reduction of coordination and approval time period in comparison with traditional design process. 11

Preliminary Scope of Conceptual Design Defense in depth concept for I&C Independence concept for I&C Diversity concept for I&C Cabling concept for I&C Protection against external factors concept for I&C Ageing management concept for I&C Power supply concept for I&C Information security concept for I&C Periodical testing concept for I&C systems + I&C Preliminary general architecture, Preliminary safety system architecture 12

Example of Overall I&C Architecture 13

Key Benefits - Compliance with stages of international standards (step-by-step clarification for basic solutions). - Approval of architectural and some technical solutions at the very early stage of project (important for basic design approval). - Reduction of risks associated with nuclear codes and standards incompliance during licensing process. - Decrease in coordination time (due to reduction time of basic design approval). 14

Thank you very much for you attention! Galivets Eugeniy E-mail: EYGalivets@rosatom.ru

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback