WM 09-0001, Wolf Creek, Enclosure Iii to Wm 09-0001, Operation Plan, Rev 2
ML090270823 | |
Person / Time | |
---|---|
Site: | Wolf Creek |
Issue date: | 01/14/2009 |
From: | Wolf Creek |
To: | Office of Nuclear Reactor Regulation |
References | |
WM 09-0001 | |
Download: ML090270823 (7) | |
Text
Enclosure III to WM 09-0001 WCNOC Operation Plan, Rev. 2 Non-proprietary ALS Class 1 E Controls Operation Plan ADVANCED LOGIC SYSTEM (ALS)CLASS 1E CONTROLS OPERATION PLAN REVISION 2 PROJECT MANAGER -GREGG CLARKSON MANAGEMENT SPONSOR PATRICK GUEVEL EXECUTIVE SPONSOR TERRY GARRETT Wolf Creek Nuclear Operating Corporation PO Box 411 1550 Oxen Lane, NE Burlington, KS 66839 Revision 2 1/14/2009 Pa4 I of 6 ALS Class I E Controls Operation Plan Revision Control Rev # Approval Approval Date Description of Change(s)0 GWC 5/29/2007 Initial Revision 1 GWC 2/5/2008 Document overhaul for generic application at Wolf Creek for ALS Class IE Controls.
Added revision table. Added more specific wording for security requirements and referenced Regulatory Guide 1.152.2 GWC 1/14/2009 Included additional clarification regarding ASU connection in section 1.2.2 Revision 2 1/14/2009 Pa~ 2of6 Revision 2 1 /14/2009 Pao 2 of 6 ALS Class IE Controls Operation Plan Table of Content R E V IS IO N 1 .............................................................................................................................................................................
R I O p eration s P lan ..................................................................................................................................................................
4 1.1 Roles and Responsibilities
.......................................................................................................................................
4 1.1. 1 W C N O C ......................................................................................................................................................
4 1.1.2 Class I E Controls Supplier .........................................................................................................................
4 1.2 Security Requirements
..............................................................................................................................................
4 1.2.1 Physical Security .........................................................................................................................................
4 1.2 .2 C y b er S ecu rity .............................................................................................................................................
4 1.3 Implementation Characteristics
................................................................................................................................
5 1.4 P ro ced u res ................................................................................................................................................................
6 1.5 R eferen ces ................................................................................................................................................................
6 1.5.1 Regulatory Guide 1.152 -"Criteria for Digital Computers in Safety Systems of Nuclear Power P lan ts" .........................................................................................................................................................
6 Revision 2 1/14/2009 Pag[ 3 of 6 ALS Class I E Controls Operation Plan 1 O~perations Plan The purpose of the Operation Plan is to identify the roles and responsibilities of operating the ALS Class IE Controls equipment, identify the security requirements for the equipment, and address operational procedures required for the operation of the equipment.
1.1 Roles and Responsibilities The following sections outline the roles and responsibilities for the operation of the ALS Class 1E Controls: 1.1.1 WCNOC WCNOC is the system owner and is ultimately responsible for the successful operation of the ALS Class lE Controls.
The WCNOC Operations Department has direct responsibility for operating the plant equipment.
The WCNOC Maintenance Department and System Engineering Group have ownership of the equipment to ensure it is operating and maintained properly.1.1.2 Class 1E Controls Supplier The Class 1E Controls Supplier is responsible for fulfilling Part 21 of 10CFR50, Appendix B. The Class 1E Controls Supplier is also responsible for delivery of the installation, operation, and maintenance manual.The installation, operation, and maintenance manual shall be incorporated into the WCNOC Documentation Controls system via the WCNOC Change Package process.1.2 Security Requirements This section discusses both the physical security and the cyber security of the ALS Class 1E Controls.
This section shall serve as the documentation of the security requirements as identified in Regulatory Guide 1.152 -"Criteria for Digital Computers in Safety Systems of Nuclear Power Plants".1.2.1 Physical Security The ALS Class 1E Controls equipment shall be located in the Control Building, specifically, the Main Control Equipment Room. This room is secured by the plant security system, which only allows authorized personnel into the area. If the particular application required installation of the ALS Class 1E Controls equipment is outside the Main Control Equipment Room, a revised Operation Plan shall be required.1.2.2 Cyber Security The ALS Class I E Controls Equipment shall not be permanently connected to either the corporate network of the Plant Process Computer.
The ALS Class lE Controls equipment provides the ability for the maintenance personnel to connect via a laptop computer, called an ASU, for the purposes of diagnostics and troubleshooting.
The operate/bypass switch for all valves within the specific ALS rack shall be physically placed in bypass prior to the ASU being connected to that ALS rack. This ensures the operators will no longer consider the valve control operable while the ASU is connected.
This requirement shall be Revision 2 1/14/2009 Pagý 4 of 6 ALS Class I E Controls Operation Plan implemented administratively within I&C procedures.
Additionally, only one ALS rack within the overall system shall have an ASU connected at any given time. The ALS Class lE Controls shall indicate this connection to the control room via the annunciator system. The ALS Class 1E Controls do not provide a data transmission mechanism to allow communications between applications or functions.
Therefore, there is no concern for the propagation of errors within and between functions for the ALS Class I E Controls.
In addition there are no concerns regarding cyber security, as the ALS Class 1 E Controls equipment is not connected to either the corporate network or the Plant Process Computer network.The ALS Class 1 E Controls equipment provides the ability for the maintenance personnel to connect via a laptop computer for the purposes of diagnostics and troubleshooting.
The laptop computer cannot change the ALS Class lE Controls equipment logic or configuration.
If a particular application of the ALS Class lE Controls equipment required this capability, a revised Operation Plan shall be required.1.3 Implementation Characteristics The ALS Class 1 E Controls are to be located in the existing cabinets for the particular system being replaced.
All operator information is available on the front-panel of the control racks. Controls and indicators shall be clearly labeled and grouped and show the state of the system for efficient evaluation of system status by the operator.
Figure 1-1 below provides an example of the front plate of an ALS Class 1 E Controls rack, this example provides the view of the front panel of the MSIV controls rack for the MSFIS application.
16 16... * *0 W0 Ut.t ca S , 4o~ ,~ c A 4 0-.t 0-.-~ iI M K ft Revision 2 1/14/2009 Pag~ 5 of 6 Revision 2 1 /14/2009 Pag4 5 of 6 ALS Class 1 E Controls Operation Plan Figure 1-1: Front Panel View of the MSIV Controls Rack for MSFIS 1.4 Procedures All procedures required for operation of ALS Class 1E Controls shall be generated or existing procedures revised as a part of the WCNOC Plant Modification Process. There are several aspects of the equipment operation that were implemented to limit the impact on the changes required in the existing operation procedures.
1.5 References
1.5.1 Regulatory Guide 1.152 -"Criteria for Digital Computers in Safety Systems of Nuclear Power Plants" Revision 2 1/14/2009 Pagý 6 of 6