ML090760561
| ML090760561 | |
| Person / Time | |
|---|---|
| Site: | Oconee  |
| Issue date: | 03/06/2009 |
| From: | Baxter D Duke Energy Carolinas |
| To: | Document Control Desk, Office of Nuclear Reactor Regulation |
| References | |
| Download: ML090760561 (92) | |
Text
Duke DAVE BAXTER Vice President PcTEnergy@
Oconee Nuclear Station Duke Energy Corporation ON01 VP/7800 Rochester Highway Seneca, SC 29672 864-885-4460 864-885-4208 fax dabaxter@dukeenergy. com March 6, 2009 U. S. Nuclear Regulatory Commission Washington, D. C. 20555 Attention: Document Control Desk
Subject:
Duke Energy Carolinas, LLC Oconee Nuclear Station, Units 1, 2, and 3 Docket Numbers 50-269, 50-270, and 50-287 Supplemental Request for Additional Information for License Amendment Request for Reactor Protective System/Engineered Safeguards Protective System Digital Upgrade, Technical Specification Change (TSC) Number 2007-09, Supplement 13 On January 31, 2008, Duke Energy Carolinas, LLC (Duke) submitted a License Amendment Request (LAR) to address replacement of the existing Oconee Nuclear Station (ONS) analog based Reactor Protective System (RPS) and Engineered Safeguards Protective System (ESPS) with a digital computer based RPS/ESPS. Duke responded to an August 20, 2008 NRC request for additional information by letter dated September 30, 2008.
AREVA NP and Duke met with Nuclear Regulatory Commission (NRC) Staff in Erlangen, Germany on December 8, 2008 regarding the design of the TELEPERM XS (TXS) Monitoring and Service Interface (MSI). The meeting was held to address NRC Staff questions about generic TXS platform testing. AREVA NP presentations described how the MSI acts as a data transmission barrier to the inner security zone in TXS systems. The purpose of the presentations was to explain recent fault injection testing performed by AREVA NP that supplements the original MSI qualification testing. A description of the presentations is provided in Enclosure 1.
Proprietary and non-proprietary versions of the presentations are included in Enclosures 2 and 4 respectively. During the presentations, the results of two test reports, along with their certificates, were discussed. These test reports and certificates are provided in Enclosure 2.
These test report documents are considered proprietary information by AREVA NP.
An affidavit for withholding the proprietary documents is provided in Enclosure 3.
Enclosures I and 2 to this letter contain proprietary information.
Withhold from public disclosure under 10 CFR 2.390.
Upon removal of Enclosures 1 and 2, this letter is uncontrolled.
www.duke-energy com
U. S. Nuclear Regulatory Commission March 6, 2009 Page 2 I declare under penalty of perjury that the foregoing is true and correct. Executed on March 6, 2009.
Sincerely, Dave xter, Vice President Oconee Nuclear Station
Enclosures:
- 1. Description of the Requirements and Test of MSI Barrier - Proprietary
- 2. AREVA NP Documents - Proprietary
- 3. AREVA NP Affidavit
- 4. AREVA NP Documents - Non Proprietary
/'
Enclosures 1 and 2 to this letter contain proprietary information.
Withhold from public disclosure under 10 CFR 2.390.
Upon removal of Enclosures 1 and 2, this letter is uncontrolled.
U. S. Nuclear Regulatory Commission March 6, 2009 Page 3 cc:
Mr. J. F. Stang, Project Manager Office of Nuclear Reactor Regulation U. S. Nuclear Regulatory Commission Mail Stop 0-14 H25 Washington, D. C. 20555 Mr. L. A. Reyes, Regional Administrator U. S. Nuclear Regulatory Commission - Region II Atlanta Federal Center 61 Forsyth St., SW, Suite 23T85 Atlanta, Georgia 30303 Mr. G. A. Hutto Senior Resident Inspector Oconee Nuclear Station S. E. Jenkins, Manager Infectious and Radioactive Waste Management Section 2600 Bull Street Columbia, SC 29201 Enclosures I and 2 to this letter contain proprietary information.
Withhold from public disclosure under 10 CFR 2.390.
Upon removal of Enclosures 1 and 2, this letter is uncontrolled.
TSC 2007-09, Supplement 13 March 6, 2008 Page 1 AREVA NP Proprietary Affidavit
)
ss.
COUNTY OF FULTON Mark J. Burzynski personally appeared before me and took an oath that the following is true and correct:
- 1.
My name is Mark J. Burzynski. I am Manager, Product Licensing, for AREVA NP Inc. and as such I am authorized to execute this Affidavit.
- 2.
I am familiar with the criteria applied by AREVA NP to determine whether certain AREVA NP information is proprietary. I am familiar with the policies established by AREVA NP to ensure the proper application of these criteria.
- 3.
I am familiar with the AREVA NP information provided to the NRC in support of a Duke Power Company LLC License Amendment Request for Oconee Nuclear Station, Units 1, 2, and 3 (Docket Numbers 50-269, 50-270, and 50-287) entitled Reactor Protective System/Engineered Safeguards Protective System Digital Upgrade, Technical Specification Change Number 2007-09. The following AREVA NP documents are provided and referred to herein as the "Documents."
AREVA NP Presentation entitled TELEPERM XS Requirements and Test of MSI Barrier AREVA NP Presentation entitled TELEPERM XS Requirements and Test of the Service Unit (SU) / Online System Barrier ISTec Test Report, Technical test report resulting from the technical inspection of the data transmission barrier of the Message-and Service-Interface in the Digital Safety Instrumentation and Control System TELEPERM XS, V1.00, November 2002 (translated from German)
ISTec Test Report, Technical Test Report for testing the Data Processing Barrier of the Monitoring and Service Interface in Digital Safety I&C TELEPERM XS, Version 2.20, March 2008 Information contained in these Documents has been classified by AREVA NP as proprietary in accordance with the policies established by AREVA NP for the control and protection of proprietary and confidential information.
- 4.
These Documents contain information of a proprietary and confidential nature and is of the type customarily held in confidence by AREVA NP and not made available to the public. Based on my experience, I am aware that other companies regard information of the kind contained in these Documents as proprietary and confidential.
- 5.
These Documents have been made available to the U S. Nuclear Regulatory Commission in confidence with the request that the information contained in these Documents be withheld from public disclosure. The request for withholding of proprietary information is made in accordance with 10 CFR 2.390. The information for which withholding from disclosure is requested qualifies under 10 CFR 2.390(a)(4)'"Trade secrets and commercial or financial information".
- 6.
The following criteria are customarily applied by AREVA NP to determine whether information should be classified as proprietary:
(a)
The information reveals details of AREVA NP's research and development plans and programs or their results.
(b)
Use of the information by a competitor would permit the competitor to significantly reduce its expenditures, in time or resources, to design, produce, or market a similar product or service.
(c)
The information includes test data or analytical techniques concerning a process, methodology, or component, the application of which results in a competitive advantage for AREVA NP.
(d)
The information reveals certain distinguishing aspects of a process, methodology, or component, the exclusive use of which provides a competitive advantage for AREVA NP in product optimization or marketability.
(e)
The information is vital to a competitive advantage held by AREVA NP, would be helpful to competitors to AREVA NP, and would likely cause substantial harm to the competitive position of AREVA NP.
The information in these Documents is considered proprietary for the reasons set forth in paragraphs 6(b), 6(c) and 6(d) above.
- 7.
In accordance with AREVA NP's policies governing the protection and control of information, proprietary information contained in these Documents has been made available, on a limited basis, to others outside AREVA NP only as required and under suitable agreement providing for nondisclosure and limited use of the information.
- 8.
AREVA NP policy requires that proprietary information be kept in a secured file or area and distributed on a need-to-know basis.
- 9.
The foregoing statements are true and correct to the best of my knowledge, information, and belief.
bignature WAffiant)
Sworn to (or affirmed) before me on this I day of
-,2009.
(Signature of Notary)
VD.~:C* SMART NOTARY PUDLIC, CHEROKEE COUNTY, GA MY COMMISSION EXPIRES DEC. 15,200M Notary Public, State of Georgia
TSC 2007-09, Supplement 13 March 6, 2008 Page 2 AREVA NP Documents - Non Proprietary
- 1. Requirements and Test of MSI Barrier TELEPERM XS - Non Proprietary, December 8, 2008
- 2. Requirements and Test of the Service Unit (SU) / Online System Barrier TELEPERM XS
- Non Proprietary, December 8, 2008
1 AREVA NP NLTD.G -
Requirements and Test MSJ Barrier 1 2-08.2008
© AREVA NP nonproprietary
a
~Test of MSI Barrer
-3 j
i d e
j
,N NL-AREVA NP NLTD-G -
Requirements and Test MSI Barrier 12-08-2008 1ýýj MMIt-JVP4I nonpropnt~eary
Overview MSI as an IT Security Barrier
~tru"PCture of-otn CO 2
> The IT Security Zone Model
> Requirements to be met by the MSI
> Test Concept
> Test Platform: Hardware and Software
> Test Cases and Test Procedure
> Test Results AREVA NP NLTD-G Requirements and Test of MSI Barrier 12-08-2008
© AREVA NP nonproprietary
TXS MS1 Barrier nuty Zone Model.
.4 Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD..G -
Requirements and Test of MS/ Barrier 12-08-2008 Oc3 AR VA NP nonproprietary
2
~Str Overview MSI as an IT Security Barrier The IT Security Zone Model Requirements to be met by the MS1 Test Concept Test Platform: Hardware and Software Test Cases and Test Procedure Test Results ARE VA NP NLTD-G Requirements and Test of MSI Barrier 12-08-2008
© ARE VA NP nonproprietaty AREVA NP NL TD-G
- Requirements and Test of MSI Barrier 12-08-2008 (c AREVA NP nonproprietary
TELEPERM XS MSM Barer Requirements (1t)
Security-Related Information Withheld in Accordance with 10 CFR 2.390 AO¶*
- i l Df
~
. ~tnn no.Ant-,
I equ me!m anu s, 0' tvS, Banjor 14-UO-zvva
,P* AR*EI W.,
Wvr nonpqrU[pii ry
TELEPERM XS MS.
are Requirements (2)
Newr vintdcbew c)nne a nd oute-vl, IL ecurit Zon Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G - Requirements and st of MS1 Barrier 12-08-2008
@J /4REVA* NP nonpropnietary
TELEPERM XS MS1 Barrier Requirements (3)
Security-Related Information Withheld in Accordance with 10 CFR 2.390 OtAMMI nA,
"C~~.,
r~,.,fle 0,--..
412 nl0 nffO A OCIA AID 8
Ivv equ Inenla an st 0 a er
,'II\\L.
~
'p",.1,[
1i~;i
- i*
t Y
TELEPERM XS MS1 Bam'er Requirements (4)
Combin!atio of pr~ces ndications ad alarms (2)
On e$* l ion an is" Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008
@ AREVA NP nonproprietary
TELEPERM XS MS1 Barrier Requirements (5)
Security-Related Information Withheld in Accordance with 10 CFR 2.390 10 AREVA NP NLTD-G Requirements and st ol MS1 carrier 12-.08-2-000
ý,) mrr= v,,i WV non~propnekary
TELEPERM XS MSy Bazner Requirements (6)
Security-Related Information Withheld in Accordance with 10 CFR 2.390 MrVC VP. IVI-IVL I U MeqUJ1t!1??e1?tS anu st o; M3 t. B if r ier
,,:, ARE vA W nonpropnelary
TELEPERM XS MSI Bam'er Requirements (6) 12 AREVA NP NLTD-G -
Requirements and Test of MSI Barrier 12-08-2008
© ARE VA NP nonproprietary
- :4-*
Overview MSI as an IT Security arrier
~trutu~re of con~?ter
> The IT Security Zone Model
> Requirements to be met by the MSI
> Test Concept
> Test Platform: Hardware and Software
> Test Cases and Test Procedure
> Test Results ARE A N NLTLJG Reuirmens ad I st 1 MI hrrie 7 -uezuu
,~t~t /.~iw-nonroperay13 AREVA NP NLTD-G - Requirements and Test of MS1 Barrier 12-08-2008
@c' AREV-vNPi nonproprietary
Aii Test of MSI Barrer Test Requirements (1)
> Creation of a Test Specification document according to FA W TXS-4. I containing the following four main sections:
- Test plan
- Test design
'] Test cases Test procedure
> Definition of a representative TXS hardware configuration
> Decision on the TXS Core Software release to be tested / employed
> Provision of a suited, high performance test environment
> Definition of the test scope and groups of test cases AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008
© AREVA NP nonproprietary 14
Test of MSI Barrer Test Requirements (2) 4Ya in topic~s (con tin ued~)4
> Script controlled test execution and Evaluation Due to the timing constraints manual initialization and control are not possible or only with intolerable restrictions
[ Deviations are evaluated manually
> Review of the test specification document, according to FAW TXS-4.2
> Rendering of a test report according to FA W TXS-4. I
> Review of the test report according to FAW TXS-4.2 Oc AREVA NP nonpropietary 15 AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008
is Overview MSI as an IT Security Barrier
~tructurea-of ýcontent,-
> The IT Security Zone Model
> Requirements to be met by the MSI
> Test Concept
> Test Platform: Hardware and Software
> Test Cases and Test Procedure
> Test Results
/-?N~~~~n VI-?
ADC~L J1
¶Lft1tlI U
'~
U I~
dIt' 11 A?.V~IIItIpIJIcoym-,
am, ~oC l
s
.~
S,~CI01 000 AC A MD 16 MMr-VM Wr IVL I U Requjiuments and I vst o, 10, Bather I
O
- PJ ~
no
-p,*L V
I~F~**l oy-
Test of MSI Bam'er TELEPERM XS System Platform.- SVE2 MS* I i*-*
- .L" Proesn U:iiit
-I ARE VA NP NLTDG Requirements and Test of MSI Barrier 12-O&2008
© ARE VA NP nonproptietary 17 AREVA NP NLTD..G - RequireineWs and Test oll MSI Barrier 12-08.2008 Oc AREVA NP nonproprietary
Test of MSI Barrier TELEPERM XS System Platform.- S VE2 J
SCP3 18 AREVA NP NLTD-G - Requirements and st of MSI Barrier 12-08-2008
@ A-vA NPH nonpropnietray
Test of MSe Barrier TELEPERM XS System Platformg Cabinet diagram 901 s
909 915 01 05 09 15 17 21 25 29 55 b
?
41 45 49 55 57 51 65 59 75 77 81 501 505 509 515 5.NH H. _M I
MSI AR xI SRACI(2 sSOEQ001 LDIO 5RACK2 c.bE001 L020 002 CPI CPM CP5 0_2 CPM Id: 2 Id: 0 LV62 LK51 L502 LISI LUO*
1604 single
- singi,
~2 u
L L
W.
~
a
-I-.......................................I 901 905 909 915 ED:
it5.t 01 as 09 11 17 21 25 29 50 37 41 45 49 55 57 61 65 69 75 7?
81 501 505 509 515
==*.e~~R 1u 0
~
Idu
.2ui
,~*
a-o.
l l t
..... t.
.. t
°'° sftý cn.ng I
c5£ abinfdiJ-*
ARE VA NP NLTD-G Requirements and Test of MSI Barrier 1208-2008
@ AREVA NP nonproprietary 19 AREIVA NP NLTD-G
- Requiremen~ts and Test of MS/ Ba'crie 12.-08-29008
@ AREVA NP nonproprietary
Test of MSI Barrier TXS System Platform: Rack Hardre: sp.ecif,.catton:Rack with twoise:rte:i b agkplnes MSI AR SRACK2 cabEQO001 LD10 SRACK2 cabEO001 LD20 VE2 CP3 CP3 CP3 VE2 CP3 Id: 2 Id: 3 LV62 LK81 LK82 LK83 LV63 LK84 Single Single LL a
a a
a Crý I
I Cr (r
I I
I l
I C,
ARE VA NP NLTU-G Requirements and Test at MSI Barrier 12-08-2008
© ARE VA NP nonproprietary 20 AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008 Oc AREVA NP nonpropfietary
~Test of MSI Barrer TXS System Platform: Network topology H": a:rd wa*r specifi c:,
Netor diagram AREVA NP NLTD-G - Requirements and Test of MSI Barrier Ccj AREVA NP nonproprietary 21 12-08-2008
Test MSy Batrer Structure of Test System I
C taiý Iw Oc AREVA NP nonproprietary 22 AREVA NP NLTD-G Requirements and Test of MSI Barrier 12-08-2008
T est of MSI Barrier Signals imported/exported by the MSI Soft wara spjecification:- Imr'port and extport ofslsignal s ASIMPORT Block=
1 0
2 No 10 PIP 4
5 GWASImpFD XQO1 VE2GWFD1 6
Connection GW->MSI GWASImpFD XQ02 VE2GWFD1 7
Connection GW->MSI B
GWASImpFD XQ03 VE2GWFD1 8
Connection GW->MSI q
5 6
7 VE2GWFD2 xQ1 6 VE2GWFD2 XQ2 9
VE2GWFD2 XQ3 Param 1 l110 AREVA NP NLTD-G -
Requirements and Test of MSI Barrier 23 12-08-2008
@ AREVA NP nonproprietary
F Tetof RMS B
arre St rcture fTestSy
> Test computer Fujitsu-SIEMENS SCENIC, 2 x Pentium 4, 3 GHz, OS Linux AREVA NP NLTD-G Requirements and Test of MS! Barrier 242..082008
© AREVA NP nonproptetary
Test of M,,.
Barre TELEPERM XS Versions of Software Componen s Component Version 25 AREVA NP NL TDUG - Requirements and Test of MS! Barrier 12-08-2008 Cc, AREVA NP nonproprietary
Overview MSI as an IT Security Barrier
- tructure of content
> The IT Security Zone Model
> Requirements to be met by the MSI
> Test Concept
> Test Platform: Hardware and Software
> Test Cases and Test Procedure
> Test Results
[...............
rr e.
2 6 AREVA NP NLTD-G -
Requirements and Test of MS1 Barrier 12-08-2008
,Qt*
ARE iVA N nonpropnetary
Test of MSI Barrier Test Concept Testvorgaben rmtieTestCases.xril Steuerungs-und msi.py Erfassungs-Skript
-I, 27 AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008
@ AREVA NP nonproprietary
Test of Mt Larri er Communication within a subrc K32 Backp:ana Bus, 28 AREVA NP NL TD-G -
Requirements and Test of MSI Barrier
!2-08-2008
©c AREVA NP nonproprietary
ies&-t of MI Barter Access restrictions via, Ethmet No~~~~~~~~~~'ý newr4omuiainvi-h eia;nefc K32 Backplane Bus' A
M U
ID All -rn fl AT,#,r' Cf N01 10 nlW nfO ADC!/A AID 29 an a
I J"
P, I y
Test of MSI Barrer Static Resource Initialization S..t....
ns d..ined by te T Ode.G enerator
.3
~-
-3 AI~ V NPNL U-Pewr~nens ai
~estor ~mi~ar~erI LtIOLIAd k-J ~tt9 I?
(UUPUVI30W AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-00-2008 k,*,i,AREt VA Air npr'opneulauzrl
IEEE Test of MS1 Barrier Message structures Mess,,3age s~tructure.- TXS Etthe~rnet layer-2 802.3 Security-Related Information Withheld in Accordance with 10 CFR 2.390 Q) AREVA NP nonpropfietary 31 AREVA NP NLTD-G -
Requirements and Test of MSI Barrier 12-08-2008
Test of MSI Barrier Test Cases (1)
Manipulations of4he 4
MC Heaae,ý_
-,, ?
MAC = Media Access Control (Hardware address in network)
Security-Related Information Withheld in Accordance with 10 CFR 2.390 ARE VA NP NL TD-G Requirements and Test of MSI Barrier 12-08-2008
© ARE VA NP nonproprietary 32 AREVANPNLTD-G
- Requirements and Test o,,IMSI Barrier 12-08-2008 Oc AREVA NP nonproprietary
Test of MSM BaroCer Test Cases (2)
LLC = Logical Link Control Security-Related Information Withheld in Accordance with 10 CFR 2.390 r33 mNc VP Jvr 1VL I U-U - Requif einems anu I ust oi Mat Bather 1zvOzUUO Q-ý AHE vA NP nonpropnelary
T est of MSI Barrier Test Cases (3)
RTE = Runtime Environment (Ablaufumgebung)
A CIA AIM All -rn t-0 1
F AACet 2 n
AOCIA MD 34 equ mn an
. 0 a
I
'p,.1"
.,y
Test of MSI Barrer Test Cases()
aneulations of sig naling messa'es (2*
Signaling message (Indication of sender state and reply to requests of the service unit)
AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008
@ AREVA NP nonproprietary 35
Test of MSI Barrier Test Cases (5)
Mnp u-ation f
t a
'messages (D
m essagqs Data message (Signals to be forwarded to automation computers)
AREVA NP NLTD-G - Requirements and Test of MSI Barrier
@ AREVA NP nonproprietary 36 12-08-2008
T est of U.' Barrer Test Cases (6)
G e nearal rnMani f pqIati-on.s Security-Related Information Withheld in Accordance with 10 CFR 2.390 flf IAA l
AI r,
1 0
000 A
~
4--,
37 mýc WA JVr IVL I U-U -
rKeqUirvineINS and I vsl ol JOS, Bather 14_VQ_4vvO nonpropt ry
Test of MSi BaLiler Definition of test cases in an XML file Teat Frame work: XMAlTasI2:yj Alle test cases are define in XML file msiTestCases, xml.
The tags (elements) of the XML file correspond to the structuring of the test.
>1
<MsiTestSuite>
<Tes tRun>
<Group>
<Subgroup>
<Tc>
<Inject>
<Expect>
External level of XML file Test execution Test group Test sub-group Test case Description of modification to be performed Description of expected results 38 AREVA NP NL TD-G - Requirements and Test of MSI Barrier 12-08-2008 r AREVA NP nonproprietary
Test of MS1 Bam'er Definition of a Test Run Tes Frmewrk Test un
> <TestRun> identifies one test run
> Each MSI test suite contains exactly one test run
> Tag <TestRun> contains the following attributes:
id ID of test run, unique within a MSI test suite executed evaluated True, after test run was executed Indication whether the results of the test run have been evaluated begin Start time of test run Stop time of test run end
@ AREVA NP nonproprietary 39 AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008
Test of MSI Batrer Definition of a Test Group
> <Group> contains a test group
> Tag <Group> contains the following attributes:
id ID of group, unique within a test run The ID is also a hint to the tested message part, e.g..,,hMac" for manipulations of the MAC headers begin Start time of recording events of the group Stop time of recording events of the group end AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008 AREVA NP nonproprietary 40
Test of MSI Barrier Definition of a Test Subgroup Tes Ffamework: Subgroup,..
> <Subgroup> contains a Sub-group
> Tag <Subgroup> contains the following attributes:
id ID of subgroup, unique within a test group The ID is also a hint to the tested slot, e.g.:,,destAddr" begin end x.s.
~
r~,A on~.
n
'~nc,Z ADCL'A AIC 41 M"MCX V/
IVl" IVI-I U-.11.3 -
IRe{uiJf emetIsI{
and I us.
01 Mlr.3, IBallther I*4UO-4UvO nonpropt ary
D Test of MS1 Barrier efiniion of a Test Case
> <Tc> contains one test case
> Tag <Tc> contains the following attributes.
id ID of the test case, unique within a test subgroup Numeric ID that may be followed by a letter (see below), if the same test is performed for data messages and signaling messages:
I'=
FDG message (data message) r Signaling message (Reply) begin end 42 AREVA NP NLTD-G -
Requirements and Test of MSl Barrier 12-08-2008
©c AREVA NP nonproprietary
=Test of MS1 Barrier Definition of Message Manipulations
> <Inject> defines a modification
> Tag <Inject> contains the following attributes:
msgId inSeq delay inject Type of injected test message Send sequence, if a test case contains multiple <Inject>
elements Delay time in microseconds Description of modification as a sequence of Python commands Example: imsg. hLl c. destSap=Ox 7E imsg. initHex (offset=61, init=
'FFFF')
ARE VA NP NLTO-G Requirements and Test of MSI Barrier 12-08-2008
© ARE VA NP nonpropdetary 43 AREVA NP NLTD-G - Requirements and Test of MS1 Barrier 12-08-2008
@ AREVA NP nonproptietary
Test of MS.' fBarrier Definition of Expected Results Tsnlt Frm ew'ork: Exec
> <Expect> definition of expected results
> Tag <Expect> contains the following attributes:
msgld Type of evaluated result message condition Condition to be checked The condition is described as a Python expression.
Example: omsg.bsl. v== 1 omsg. findHex (offset=57, find= '0200Odfcc')
occurrence
,,O" The condition must not be fulfilled
,,n" The condition must be fulfilled exactly,,n" times
,,(n, m)" The condition must be fulfilled at least,,n" times and maximally,,m" times AREVA NP NLTD-G Requirements and Test of MSI Barrier 12-08-2008
© AREVA NP nonproprietary 44
Test of MSI Barrier Communication within a sub-rack K32 Backplane Bus arccVA W-'(Il I
UU ~qurrners no tst r fbI arr~r I&UOZUU A~ WA Vt onpopnr45 AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008
ý.; AREt:.VA4 JVP-nonpropnetary
Test of MS1 Barrier Layout of Communication Memory O1 verall lawyout of theq comm'uhi1cation memorynk Security-Related Information Withheld in Accordance with 10 CFR 2.390 ARE VA NP NLTD-G Requirements and Test of MSI Barrier 12~O8-2OO8
© AREVA NP nonproptietaty 46 AREVA NP NLTD-G - Requirements and Test of MS1 Barrier 12-08,-2008
@ AREVA NP nonproprietaty
Test of MSI Barrier Layout of Communication Memory Memory, distribution: with 4 atve components 47 A t L V I'
rl
- e uie n n s n s
r i*
r............
.. +'....
V,' IV, nonp opn" AREVA NP NLTD-G - Requirements and Test of MSI Barrier
. 1-08-2008 0J AR1EVA NPI nonproprietary
Test of MSI Barrer Structure of Backplane Communication Channels Srtueof Sys tem cha,,nnegl antd halndshake--,ýý- cha4nnel, System channel Handshake channel Securiiy-Related Information WVithheld in Accordance with 10 CFR 2.390 m
ARE VA NP NLTD-G Requirements and Test of MSI Barrier 12-08-2008
© ARE VA NP nonproprietary 48 AREVA NP NLTD-G - Requirements and Test of MS1 Barrier 12-08-2008
@ AREVA NP nonproptietary
Test of MS1 Barrer Example Layout of Communication Memory 1ecit4e M -.'Wemoiy egi'"n* OF a MSI Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008
@ AREVA NP nonproprietary 49
Test of MS1 Barrer Layout of Communication Memory (A C) 1en demory' Re ion~ OfMIf S
=*i 'utdoima on mn ter Security-Related Information Withheld in Accordance with 10 CFR 2.390 AID~~~~4 no) rDýnno
,~
f.C 1
000 AQ=11A AIM 50 M.
CgE V.* IVF IV*L. I U -k3 equ r
et:Lmentlslll an1/
t ;
IO a*l.g er¢fll
- J PIFE:,
V, propt arrIUU//*Oy
Test of MS1 Barrier Layout of Communication Memory (SU)
Send Memonry Re"cgiown of MS
>Service.
Uhit'-
Security-Related Information Withheld in Accordance with 10 CFR 2.390
@ AREVA NP nonproptietary 51 AREVA NP NLTD-G
- Requirements and Test of MS/ Barrier 12-08-2008
Test of MS Barrier Layout of Communication Memory (SU)
S, end Miemo) y Re R
0gon of MSI =
G'atewby Security-Related Information Withheld in Accordance with 10 CFR 2.390 ARE VA NP NLTD-G Requirements and Test of MSI Barrier 12-08-2008
© ARE VA NP nonproprietary 52 AREVA NP NLTD-G - Requirements and Test of MS1 Barrier 12-08-2008 Oc AREVA NP nonproprietary
Test of MSI Barrier Rp of d Testvorgaben 4
A4msi Test Cases.xm I Steueru ngs-und Erfassungs-Skript
-I 53 AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008
@ AREVA NP nonproprietary
Test of MSI Barier Evaluation of Results Evlaio4ftsteut Testvorgaben +
erfasste Daten Auswertungsskript Testvorgaben +
erfasste Daten +
Auswertungen ARE VA NP NL TO C Peovireinents anti Test of MSI Barrier 12 082008
© AREVA NP nonproprielary 54 AREVAI NP NLTD.+G
- Requiremems and Test of MSI Barrier 12.08..2008 0( AREIVA NP nonproprietary
Overview MSI as an T Security mier The IT Security Zone Model Requirements to be met by the MSI Test Concept Test Platform: Hardware and Software Test Cases and Test Procedure Test Results 0© AREVA NP nonproprietary 5
AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008
Test of MSI Barrier Conclusions (1)
Uvervie w o ffett execu ti6tt an dtestjjgsults ft
~~fr">
Test environment Test coverage Test execution Test evaluation Test completion 56 AREVA NP NLTD-G -
Requirements and Test of MS1 Barrier 12-.08.2008
@ AREVA NP nonproprietary
TO-i est of MS1 Bamaer Conclusions (2)
Trest Environihen.t Security-Related Information Withheld in Accordance with 10 CFR 2.390 ARE VA NP NL TD-G Requirements and Test of MSI Barrier 12-08-2008
© ARE VA NP nonproprietary 57 AREVA NP NL TD-G - Requirements and Test of MS1 Barrier 12-08-2008
@ AREVA NP nonproprietary
I Tst C.. vQerag Security-Related Information Withheld in Accordance with 10 CFR 2.390 aest of MS Barrier Conc5usions (3) 58 AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08-2008 oj A'-V.A I-"nonproptietary
Test MS1 Barr5er Conclusions (4) 59 Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G - Requirements and Test of MSI Barrier 12-08...2008
-c*,-)'
vARVAN nonproprietary
Test of MS1 Bam'er Conclusions (5)
T:!i!*
- *stevaluat*
- i !!!*!*:!: -:::::**-*!:i:om:"
i <P4 I
Security-Related Information Withheld in Accordance with 10 CFR 2.390 60 APEVA NP nonproptietary AREVA NP NLTD-G -Requirements and Test of MSI Barrier 12-08-2008
Test completion rest of MSI Barrier Conclusions (6) 61 Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G -
Requirements and Test of MSI Barrier 12-08-2008
- J I"IF*I... Vt,.,* IV..- IIUII*JIU*JIICLt31)"
<3/4 1
AREVA NP NLTD-G -
Requirements and Test SU / Online System Barrier 2008-12-08
© AREVA NP nonproprietany
t3 r-,Ts f-h U
,.Onin Syte Ba e
FANP NLTD-G fl 1000
- N A DCI/IA AID M
ARE* VA4 JVP* NL I D-L*
Requirements and* i est SU / Online Systum* Bartier zuvo 1-V£"O nonprop ary
r~j~c Overview Service Unit / Online System Barrier
> The IT Security Zone Model
> Requirements to be met by the Service Unit
> Requirements.to be met by the MSI
> Requirements to be met by the Online System
> Test Concept
> Test Platform: Hardware and Software
> Test Cases and Test Procedure
> Test Results ARE VA NP NLTD-G Requirements and Test of Si) / Online System Barrier 2008-12-08
@ ARE VA NP nonpoprietary 3
AREVA NPNL TD-G -
Requirements and Test of SUI/Online System Barrier 2008-12-08
@,* AREVA NP nonproprietary¢
TELEPERM XS Secun'ty Zone Model Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G -
Requirements and Test of SU/ Online System Barrier 2008-12-08
@ AREIVA NP nonproprietary
Overview Service Unit Online System Barrier
> The IT Security Zone Model
> Requirements to be met by the Service Unit
> Requirements to be met by the MSI
> Requirements to be met by the Online System
> Test Concept
> Test Platform: Hardware and Software
> Test Cases and Test Procedure
> Test Results ARE VA NP NLTD-G Requirements and Test of SUl Online System Barrier 2008-12-08
© ARE VA NP nonproprietary 5
AREVA NP NL TD-G - Requirements and Test of SU / Online System Barrier 2008-12-08
@ AREVA AT nonproprietary5
TELEPERM XS SU / Online System Barrier Requirements to be met by the SU Raquremn tilsI15
-V
> Evaluation of user specific privileges Read / acknowledge errors
- Read / trace I&C variables Write function block parameters
- Privilege for operating mode TEST
- Privilege for operating mode DIAGNOSIS
> Privileges are granted per TELEPERM XS user
> Privileges are set up by the administrator ARE VA NP NLTD-G Requirements and Test of SU / Online System Barrier 2008-12-08
@ ARE VA NP nonproprieiary 6
AREVA NPNL TD-G -
Requirements and Test of SU / Online Systemn Barrier 2008-12-08
@, AREIVA NP nonproprietary6
Securi Inform Under tv-Related ation -
Withhold w
10 CR 2.390 Service Unit Online System Barrier
> The IT Security Zone Model
> Requirements to be met by the Service Unit
> Requirements to be met by the MSI
> Requirements to be met by the Online System
> Test Concept
> Test Platform: Hardware and Software
> Test Cases and Test Procedure
> Test Results ARE VA NP NLTD-G Requirements and Test of SU I Online System Barrier 2008-12-08
© ARE VA NP nonproprietary 7
AREVA.NP NL TD-G -
Requirements and Test of SU / Online System Barrier 2008-12-08
@; A R EVA NP n onp rop)rie tarty7
TELEPERM XS SU /Online System Requirements to be met by the Bam"er MS1 (1) verew 6f requrenntto
- ~bte met
- the TXS MSi Security-Related Information Withheld in Accordance with 10 CFR 2.390
-I ARE VA NP NLTD-G Requirements and Test of SiN Online System Barrier 2008-12-08
© ARE VA NP nonorcprieiary S
APEVANPNLTD-G
- Requiremems and Test of SUIOnline System Barrier 2008-12-08 C;, APFVA NP nonoro;)rietary
TELEPERM XS SU / Online System Barrier Requirements to be met by the MSI (2)
Security-Related Information Withheld in Accordance with 10 CFR 2.390 ARE VA NP NLTD-G Requirements and Test of SU / Online System Barrier 2008-12-08
© ARE VA NP nonproprietary 9
AREVANPNLTD-G
- RequiremenIs and Test of SUIOnline System Barrier 2008-12-08
@ APEVA NP nonproprietary
TELEPERM XS SU/ Online System Barrier Requirements to be met by the MSI (3)
Security-Related Information Withheld in Accordance with 10 CFR 2.390 ARE VA NP NLTD-G Requirements and Test of SUI Online System Barrier 2006-12-08
© ARE VA NP nonproprietaty 10 AREVA NP NL TD-G - Requirements and Test of SU / Online System Barrier 2008-12-08
©,- AREVA NP nonproprietary/
10
TELEPERM XS SU / Online System Barrier Requirements to be met by the MS1 (4)
Pfot~ctftn agaiilKs £ihvaid message froni the SLP Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G - Requirements and Test of SU/ Online System Barrier 2008-12-08
,C.* AREVA NP nonproprietary11
TELEPERM XS SU /Online System Barer
- Requirements to be met by the MSI (5)
En g: ii....ri yýe
-:,niic, po rds*i g ahdd maintenan ies hmiMr Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G - Requirements and Test of SU / Online System Barrier 2008-12-08 (qý',
AREVA NP nonproprietary 12
Overview Service Unit /Online System Barrier CF n
- 4.
j
> The IT Security Zone Model
> Requirements to be met by the SU /MSI Barrier
> Requirements to be met by the Online System
> Test Concept
> Test Platform: Hardware and Software
> Test-Cases and Test Procedure
> Test Results ARE VA NP NLTD-G Requirements and Test of SIN Online System Barrier 2008-12-08
© ARE VA NP nonpmprietary 13 AREVA NP NL TD-G -
Requirements and Test of SU / Online System Barrier 2008-12-08
@ AREVA NP nonproprietary 13
TELEPERM XS SU / Online System Barrier Requirements to be met by the Online System (1)
Overveff vh,ývCrequirements Io tobe meta by the Onie Syst.eml~
Security-Related Information Withheld in Accordance with 10 CFR 2.390 ARE VA NP NLTO-G Requirements and Test of SU/ Online System Barrier 2008-12-08
© ARE VA NP non Proprietary 14 AREVA NP NLTD-G - Requirements and Test of SU I Online Systern Barrier -
2008-12-08
@ AREVA NP nonpropfietary 14
TELEPERM XS SU / Online System Barrer Requirements to be met by the Online System (2)
~~Eva~~aatI~~~hs Rf 0,nssi: OPRTO Security-Related Information Withheld in Accordance with 10 CFR 2.390 ARE VA NP NLTD-G Requirements and Test of SUI Online System Barrier 2008-12-08
© ARE VA NP nonproprieta~y 15 AREVA NP NLTD-G -
Requirements and Test of SUI/Online System Barrier "
2008-12-08 Cq AREVA NP nonproprietary 15
TELEPERM XS SU / Online System Barrier Requirements to be met by the Online System (3)
Livauatofs orpermission&. tREER~ATI1O" Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G Requirements and Test of SUI Online System Barrier 2008-12-08 Cc;, AREVA NP nonproprietary 16
TELEPERM XS SU / Online System Barrier Requirements to be met by the Online System (4)
Evalu'oso emsin:PR TRZ I
Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G - Requirements and Test of SU / Online System Barrier 2008-12-08 C, AREVA NP nonproprietaty 17
TELEPERM XS SU /Online System Barrier Requirements to be met by the Online System (6)
Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NL TD-G - Requirements and Test of SU I Online System Barrier 2008-12-08
@ AREVA NP nonproprietary 18
TELEPERM XS SU / Onine System Barrier Requirements to be met by the Online System (7)
Evut
" *-7) f G U,, Uemsos:,
D IAGNOSI Security-Related Information Withheld in Accordance with 10 CFR 2.390 AREVA NP NLTD-G - Requirements and Test of SUI/ Online System Barrier 2008-12-08
@ AREVA NP nonpropfietary 19
0V erview Service Unit /Online System Barrier
~trctre of c ontetitt
> The IT Security Zone Model
> Requirements to be met by the Service Unit
> Requirements to be met by the MSI
> Requirements to be met by the Online System
> Test Concept
> Test Platform:, Hardware and Software
> Test Cases and Test Procedure
> Test Results AREVA NP NLTD-G - Requirements and Test of SU / Online System Barrier 2008-12-08
@ AREVA NP nonjoroprietary 20
I Test of MSI Barrier Test Requirements (1)
> Creation of a Test Specification document according to FA W TXS-4. I
.containing the following four main sections:
Test plan Test design
[ Test cases
[ Test procedure
> Definition of a representative TXS hardware configuration
> Decision on the TXS Core Software release to be tested / employed
> Provision of a suited, high performance test environment
> Definition of the test scope and groups of test cases AREVA NP NLTD-G - Requirements and Test of SUI Online System Barrier 2008-12-08
© AREVA NP nonproprietary 21
I' Test of MSI Barr.."
Test Requirements (2)
> Script controlled test execution and Evaluation
[] Due to the timing constraints manual initialization and control are not possible or only with intolerable restrictions Deviations are evaluated manually
> Review of the test specification document, according to FA W TXS-4. 2
> Rendering of a test report according to FA W TXS-4. I
> Review of the test report. according to FAW TXS-4.2 ARE VA NP NLTD-G Requirements and Test of SUI Online System Barrier 2008-12-08 Q ARE VA NP nonproprietary 22 AREVA NP NLTD-G Requirements and Test of SU / Online System Barrier 2008-12-08
@ AREVA NP nonproprietary 22
ISt Overview Service Unit /Online System Barrir
~icture of conten't The IT Security Zone Model Requirements to be met by the Service Unit Requirements to be met by the MSI Requirements to be met by the Online System.
Test Concept Security-Related Information Withheld in Accordance with 10 CFR 2.390 ARE VA NP NLTD-G Requirements and Test of SU / Online System Barrier 2008-12-08
© ARE VA NP nonproprietary 23 AREVANPNLTD-G
- Requirements and Test of SUIOnfine Systern Barrier 2008-12-08 Og AREVA NP nonpropfietary 23