EPRI Digital Instrumentation and Control (DI&C ...Proj. Mgt. Engineering Ops Work Mgt Engineering, V&V Maint/ Craft Initiation (Up to T-24) Design (T-24 to T-12) Planning (T-12 to

© 2016 Electric Power Research Institute, Inc. All rights reserved.© 2015 Electric Power Research Institute, Inc. All rights reserved.

US NRC Public Meeting on DI&C

Robert Austin

Bruce Geddes

January 20, 2016

EPRI Digital Instrumentation and

Control (DI&C) Implementation

Products

2© 2016 Electric Power Research Institute, Inc. All rights reserved.© 2015 Electric Power Research Institute, Inc. All rights reserved.

The Past

EPRI focus for last few years on improving DI&C implementation, particularly for non-safety upgrades for equipment reliability Many products developed, including, but not limited to:

– Hazards analysis– Configuration management– Testing– Cyber security in design and procurement– Updated electromagnetic compatibility (EMC)– Training courses / computer based training (CBT) on digital upgrades

But…


The Problem

The design control elements of the basic engineering change/modification processes for existing plants are typically based on regulations, standards and guidance (e.g., ANSI N45.2.11) that do not specifically address digital design issues

– The unique aspects of digital design, especially software elements, often are covered by processes that are not well integrated into the overall plant design change process

– There is a need to improve the degree to which the digital design process is integrated within the plant modification process and address elements throughout the life-cycle of a digital system


The Solution

Digital Design GuideA guideline for digital design control in the plant engineering

change/modification processes, with an emphasis on non-safety implementations

– how to integrate the unique aspects of digital design within a typical plant engineering change/modification process

– can be used in conjunction with existing change procedures or guide the development of procedures that can be integrated into the owner/operator’s change process

Intended audience– owner/operator design engineers and project managers involved in digital I&C modification

activities, or– A/E service providers


Result: EPRI 3002002989

Published October 2014Conclusions

– Covers broad range of topics– Most say it strikes the right level of detail– Poster is a significant aid

Recommendations– Demonstration projects– Phase-by-phase checklists– List of recommended deliverables– Update when appropriate– Update training materials


Swimlane FormatGeneric Modification Process

Generic SDLC

Proj

ect

Man

agem

ent

Engi

neer

ing

Ope

ratio

nsW

ork

Man

agem

ent

Deve

lopm

ent

Mai

nten

ance

(o

r Cra

ft)

V&V

O&M (T+...)Initiation (Up to T-24) Design (T-24 to T-12) Planning (T-12 to T-7) Implementation (T0) Closeout (T+1)

O&M SupportInstall/CommissionTest & DeliverImpl./IntegrationPurchase & Mfr.DesignRequirementsConcept

Modification InitiationActivities

Input, Review & Confirmation Activities

Modification Design Activities

Pre-implementationTesting, Planning and Preparation Activities

Implementation & Testing Activities Closeout

Activities

Operations & Maintenance

Activities

Technical Support

Activities

Change Management

Activities

Concept Phase

Activities

V&VPlanning

Requirements Phase

Activities

Requirements Phase V&V

DesignPhase

Activities

Design Phase V&V

Purchasing & Manufacturing

Activities

Implementation & Integration Phase

Activities

Integration Phase V&V

Baseline & Delivery Activities

TestPhase V&V

Installation & Commissioning

Activities

Installation Checkout V&V

Problem Reporting,Corrective Action,Updates/Upgrades

Regression Analysis


Digital Design Guide Poster


Topical Guidance

Activity Key

Human FactorsEngineeringProcurement

Configuration Management

Testing

Licensing

RequirementsAnalysis

Data Communications

Plant Integration Design

Cyber Security

MODIFICATION PROCESS – ANALYSES

SDLC

Proj

. M

gt.

Engi

neer

ing

Ops

Wor

k M

gtEn

gine

erin

g,V&

VM

aint

/Cr

aft

O&M (T+...)Initiation (Up to T-24) Design (T-24 to T-12) Planning (T-12 to T-7) Impl. (T0) Closeout (T+1)

O&M SupportInstall/Comm.TestImpl./Int.Purchase/ManufactureDesignRequirementsConcept

Develop Conceptual

Design

Develop System Requirements

Purchase or Manufacture Components

Technical Support

Develop Detailed HW &

SW Designs

Integrate System

Install, Commission &

Checkout

Test & Deliver System

Develop Insights from Existing Analyses (4.1.2)

Develop or Confirm Prelim. Hazard Analysis (4.1.5)

Perform Problem/Needs Analysis (4.1.1)

Develop or ConfirmHazard Analysis (4.2.1)

Develop Hazard AnalysisPlan (4.1.4)

Identify & Resolve Single Point Vulnerabilities (4.2.2)

Update PRA(4.3.1)

Resolve Remaining Hazards (4.2.3)

Assess CCF Susceptibility (4.1.6)

Perform CCF Coping Analysis (if needed) (4.1.7)

Verify Hazard Analysis Results (4.2.4)

Validate Hazard Analysis Results (4.3.2)


Perform Operating Experience Review (4.1.3)

Each topic is addressed in a dedicated section of the Digital Design Guide, with it’s own swimlane, and guidance is provided for each activity on the swimlane


Example Guidance MODIFICATION PROCESS – ANALYSES

SDLC

Proj

. M

gt.

Engi

neer

ing

Ops

Wor

k M

gtEn

gine

erin

g,V&

VM

aint

/Cr

aft


O&M SupportInstall/Comm.TestImpl./Int.Purchase/ManufactureDesignRequirementsConcept

Develop Conceptual

Design

Develop System Requirements


Technical Support

Develop Detailed HW &

SW Designs

Integrate System


Checkout


Develop Insights from Existing Analyses (4.1.2)

Develop or Confirm Prelim. Hazard Analysis (4.1.5)

Perform Problem/Needs Analysis (4.1.1)

Develop or ConfirmHazard Analysis (4.2.1)

Develop Hazard AnalysisPlan (4.1.4)

Identify & Resolve Single Point Vulnerabilities (4.2.2)

Update PRA(4.3.1)

Resolve Remaining Hazards (4.2.3)

Assess CCF Susceptibility (4.1.6)

Perform CCF Coping Analysis (if needed) (4.1.7)

Verify Hazard Analysis Results (4.2.4)



Perform Operating Experience Review (4.1.3)

Guidance for each specific activity prompts the user to consider typical issues and topics, and references point to detailed guidance (by section number)

Activity Key



Testing

Licensing


Data Communications


Cyber Security

Excerpt from Section 4 – “Analysis”


MODIFICATION PROCESS – REQUIREMENTS

SDLC

Proj

. M

gt.

Engi

neer

ing

Ops

Wor

k M

gtEn

gine

erin

g,V&

VM

aint

/Cr

aft


O&M SupportInstall/Comm.TestImpl./Int.Purchase/Mfr.DesignRequirementsConcept

Develop Conceptual

Design

Develop Detailed Requirements

Qualify Eqquipment

Identify BasicRequirements (5.1.2)

Technical Support

Develop Detailed HW & SW Design

Integrate System


Checkout


ConformanceChecks

(5.2.5)

Develop Procurement Specification (5.1.4)

Develop or ConfirmFunction Analysis (5.2.1)

Develop or ConfirmInterface Analysis (5.2.2)

Provide Input;Develop or ConfirmDetailed Requirements

(5.2.3)

ConformanceChecks

(5.4.1)

ConformanceChecks (5.5.1)

Plan for Iterations & Refinements (5.1.1)

ConformanceChecks

(5.3.1)

Review & Confirm Conceptual Design (5.1.5)

Provide Input; Review & Confirm Basic Requirements

(5.1.3)

Perform or ConfirmReq’ts. Analysis (5.2.4)


Example Guidance (continued)

Activity Key



Testing

Licensing


Data Communications


Cyber Security

Excerpt from Section 5 – “Requirements”

Guidance is not US-centric


MODIFICATION PROCESS – REQUIREMENTS

SDLC

Proj

. M

gt.

Engi

neer

ing

Ops

Wor

k M

gtEn

gine

erin

g,V&

VM

aint

/Cr

aft


O&M SupportInstall/Comm.TestImpl./Int.Purchase/Mfr.DesignRequirementsConcept

Develop Conceptual

Design

Develop Detailed Requirements

Qualify Eqquipment

Identify BasicRequirements (5.1.2)

Technical Support

Develop Detailed HW & SW Design

Integrate System


Checkout


ConformanceChecks

(5.2.5)

Develop Procurement Specification (5.1.4)

Develop or ConfirmFunction Analysis (5.2.1)

Develop or ConfirmInterface Analysis (5.2.2)

Provide Input;Develop or ConfirmDetailed Requirements

(5.2.3)

ConformanceChecks

(5.4.1)

ConformanceChecks (5.5.1)

Plan for Iterations & Refinements (5.1.1)

ConformanceChecks

(5.3.1)

Review & Confirm Conceptual Design (5.1.5)

Provide Input; Review & Confirm Basic Requirements

(5.1.3)

Perform or ConfirmReq’ts. Analysis (5.2.4)


Example Guidance (continued)

Activity Key



Testing

Licensing


Data Communications


Cyber Security

Excerpt from Section 5 – “Requirements”

Typical interactions with a System Integrator are listed, by lifecycle phase, for each topic


The Future

2016: Update the CBT course– Content (CCF guide, digital design guide, etc.)– Format (web-based in the future?)

2017: Update the Digital Design Guide2018+: Update guide and processes to adopt Systems

Engineering approaches being examined now2019+ - revise, update, revise, update…

Technology will continue to evolve and change

We must be able to evolve and change with it.


Together…Shaping the Future of Electricity

Documents

EPRI Digital Instrumentation and Control (DI&C ...Proj. Mgt. Engineering Ops Work Mgt Engineering, V&V Maint/ Craft Initiation (Up to T-24) Design (T-24 to T-12) Planning (T-12 to