Letter Sequence RAI |
|---|
|
|
MONTHYEARGNRO-2010/00047, Operating License Amendment Withdrawal and Request, Cyber Security Plan2010-07-22022 July 2010
Operating License Amendment Withdrawal and Request, Cyber Security Plan
Project stage: Other
ML1021702812010-08-0505 August 2010
Acceptance Review
Project stage: Acceptance Review
ML1021702222010-08-0505 August 2010
Acceptance Review of License Amendment Request for Approval of Cyber Security Plan
Project stage: Acceptance Review
ML1035002742010-12-16016 December 2010
Request for Additional Information Email, License Amendment Request to Revise License Condition and Approve Cyber Security Plan Based on NEI 08-09, Revision 3
Project stage: RAI
GNRO-2011/00002, Response to Request for Additional Information on GGNS Cyber Security Plan (Public Version)2011-02-15015 February 2011
Response to Request for Additional Information on GGNS Cyber Security Plan (Public Version)
Project stage: Response to RAI
ML1106300952011-03-0404 March 2011
Generic Request for Additional Information Email, License Amendment Request to Revise License Condition and Approve Cyber Security Plan Based on NEI 08-09, Revision 3
Project stage: RAI
GNRO-2011/00020, Unit 1, Response to Additional Requests for Additional Information (Rals) and Revision to the GGNS Cyber Security Plan2011-04-0404 April 2011
Unit 1, Response to Additional Requests for Additional Information (Rals) and Revision to the GGNS Cyber Security Plan
Project stage: Other
ML1119401652011-07-27027 July 2011
Issuance of Amendment No. 186, Revise License Condition and Approval of Cyber Security Plan and Associated Implementation Schedule
Project stage: Approval
ML1133204232011-12-0505 December 2011
Correction of Facility Operating License Page in Amendment No. 186 Issued 7/27/2011 Revise License Condition and Approval of Cyber Security Plan and Associated Implementation Schedule
Project stage: Other
2011-12-05
[Table View] |
|
|---|
Category:E-Mail
MONTHYEARML24289A1442024-10-15015 October 2024
NRR E-mail Capture - Acceptance Review - Entergy (Grand Gulf Nuclear Station and River Bend Station) - CNRO2024-00017 - Adopt TSTF-592 - CLIIP (L-2024-LLA-0133)
ML24137A2702024-05-16016 May 2024
NRR E-mail Capture - Entergy Fleet - Acceptance Review of License Amendment Request to Remove Obsolete License Conditions from Operating Licenses for GGNS, RBS, and WF3 (L-2024-LLA-0062)
ML24108A1142024-04-17017 April 2024
June 2024 Emergency Preparedness Program Inspection - Request for Information
ML24088A0092024-03-27027 March 2024
NRR E-mail Capture - Entergy Fleet - Final Request for Confirmation of Information (RCI) Re Alternative Request EN-RR-22-001 Concerning ASME Code Case N-752 (L-2022-LLR-0054)
ML23348A1222023-12-14014 December 2023
NRR E-mail Capture - Grand Gulf, River Bend, and Waterford, Unit 3 - 2nd Round of Official RAIs for RR EN-RR-22-001, Use ASME Code Case N-752, Risk Informed Categorization for Class 2 and 3 Systems
ML23335A0652023-12-0101 December 2023
NRR E-mail Capture - GGNS - Audit Questions for LARs Associated with TSTF-505, Provide Risk-Informed Extended Completion Times - RITSTF Init. 4b and 50.69, Risk-Informed Cat. and Treatment of SSCs for Nuclear Pwr Rx (L-2023-LLA-0081/0080)
ML23240A3412023-08-28028 August 2023
NRR E-mail Capture - ANO-2, Grand Gulf, and River Bend - Acceptance Review of LAR Revising TSs to Adopt TSTF-205, Revision of Channel Calibration, Channel Functional Test, and Related Definitions
ML23191A8662023-07-10010 July 2023
NRR E-mail Capture - Grand Gulf - Acceptance Review of LAR Adopting 10 CFR 50.69, Risk-Informed Categorization and Treatment of SSCs for Nuclear Power Reactors
ML23191A2802023-07-10010 July 2023
NRR E-mail Capture - Grand Gulf - Acceptance Review for LAR Adopting TSTF-505, Rev. 2, Provide Risk-Informed Completion Times - RITSTF Initiative 4b
ML23116A1462023-04-26026 April 2023
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Final RAI for Request to Update ASME Code Relief Request Safety Evaluations with NRC-Approved Revision of BWRVIP Guidelines (GG-ISI-020, and RBS-ISI-019)
ML23072A3672023-03-0909 March 2023
NRR E-mail Capture - Entergy Fleet - Acceptance Review of Quality Assurance Program Manual Reduction in Commitment
ML23009B6912023-01-0909 January 2023
NRR E-mail Capture - Grand Gulf, Unit 1 and River, Unit 1 - Acceptance of Requested Licensing Action Request to Update ASME Code RR SE with NRC-Approved Revision of BWRVIP Guidelines
ML22353A6122022-12-19019 December 2022
March 2023 Emergency Preparedness Exercise Inspection - Request for Information
ML22206A0152022-07-21021 July 2022
NRR E-mail Capture - Entergy (Grand Gulf, River Bend, and Waterford-3) - Acceptance Review of the RR EN-RR-22-001, Case N-752, Risk-informed Cat & Treatment for Repair/Replacement Activities in Class 2 & 3 Systems
ML22173A0372022-06-21021 June 2022
NRR E-mail Capture - Entergy (Grand Gulf and River Bend) - Acceptance Review of the License Amendment Request to Revise Technical Specifications to Adopt TSTF-580, Provide Exception from Entering Mode 4 with No Operable RHR Shutdown Cooling
ML22110A1172022-04-19019 April 2022
(GG) 2022 Emergency Preparedness (EP) Program Inspection RFI Sdh 041922
ML22075A3692022-03-0303 March 2022
Email Grand Gulf 2022 PI&R Request for Information
ML21312A4792021-11-0505 November 2021
Email: NRC Staff Preliminary Questions Regarding X Energy LLC Xe-100 Topical Report: Risk-Informed Performance-Based Licensing Basis Development
ML21308A5602021-11-0404 November 2021
NRR E-mail Capture - Arkansas Nuclear One, Units 1 and 2, Grand Gulf, River Bend, and Waterford, Unit 3 - Acceptance Review of LAR to Adopt TSTF-554, Revise Reactor Coolant Leakage Requirements
ML21292A0112021-10-18018 October 2021
NRR E-mail Capture - ANO, 1 and 2, Grand Gulf, River Bend, Waterford, 3 - Acceptance Review of LAR to Adopt TSTF-541, Add Exceptions to Surveillance Requirements for Valves and Dampers Locked in the Actuated Position
ML21174A0342021-06-22022 June 2021
NRR E-mail Capture - Entergy Fleet (ANO, Ggulf, Rbend, & Waterford) - Acceptance Review for Relief Request to Use a Provision of a Later Edition of the ASME Code, Section XI for Periodic System Pressure Tests Exemptions
ML21165A1352021-06-14014 June 2021
NRR E-mail Capture - Grand Gulf - Acceptance Review for Inserice Testing Program Relief Request VRR-GGNS-2021-1, Pressure Isolation Valve Testing Frequency
ML21119A2152021-04-28028 April 2021
NRR E-mail Capture - Energy Harbor Fleet, Beaver Valley Units 1 and 2 and DAVIS-BESSE Unit 1 - Acceptance of Relief Request Proposed Alternative to Use ASME OM Code Case OMN-27
ML21109A2142021-04-19019 April 2021
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Rev. Est Hours for Review of Relief Request (RR) - ASME Code RR Safety Eval with NRC-Approved Rev of BWRVIP Guidelines (GG-ISI-020 and RBS-ISI-019)
ML21109A2132021-03-23023 March 2021
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Relief Request (RR) Associated with ASME Code RR Safety Evaluations with NRC-Approved Revision of BWRVIP Guidelines (GG-ISI-020 and RBS-ISI-019)
ML21068A4092021-03-0909 March 2021
NRR E-mail Capture - Entergy Fleet (GGNS and RBS) -Approval of TSTF-501 LAR, Relocate Sored Fuel Oil and Lube Oil Volume Values to Licensee Control
ML21015A3452021-01-14014 January 2021
NRR E-mail Capture - Grand Gulf and River Bend - Revised Estimated Hours for Relief Request Associated with ASME Code RR SEs with NRC-Approved Revision of BWRVIP Guidelines (GG-ISI-020 and RBS-ISI-019)
ML20363A1462020-12-22022 December 2020
Request for Information: Grand Gulf EP Exercise Inspection - March 2021
ML20352A1192020-12-10010 December 2020
Email from Thomas Saporito 12-10-20
ML20329A1442020-11-20020 November 2020
Terrapower QAPD Preliminary Questions Email
ML20323A4162020-11-18018 November 2020
Response to Choice Letter (EA-20-094)
ML20337A2712020-11-0909 November 2020
Email - Grand Gulf Nuclear Station 050-00416, Requested Regulatory Conference
ML20289A3542020-10-14014 October 2020
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Acceptance Review of TSTF-563 LAR, Revise Instrument Testing Definitions to Incorporate the Surveillance Frequency Control Program
ML20258A0202020-09-0909 September 2020
EP Program Inspection RFI, Request for Information to Support and Prepare for Emergency Preparedness (EP) Program Inspection Scheduled to Occur the Week of November 16, 2020
ML20260H4422020-09-0808 September 2020
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Official RAIs for RR Associated with Updating ASME Code RR SEs with NRC-Approved Revision of BWRVIP Guidelines (GG-ISI-020 and RBS-ISI-019)
ML20176A4832020-06-22022 June 2020
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Acceptance Review of Relief Request Associated with ASME Code RR SE with NRC-Approved Revision of BWRVIP Guidelines (GG-ISI-020 and RBS-ISI-019)
ML20150A6012020-05-29029 May 2020
NRR E-mail Capture - Grand Gulf - Official RAI for LAR Associated with Containment ILRT Interval Change from 10 Years to 15 Years
ML20097B8032020-04-0303 April 2020
NRR E-mail Capture - Grand Gulf - Acceptance Review for the Exigent LAR Associated with One-Time Extension of Appendix J Type a Integrated Leakage Rate Test Frequencies from 11.5 Years to 13.5 Years
ML20093C3072020-04-0101 April 2020
NRR E-mail Capture - (External_Sender) Entergy Fleet - Performance-Based Cyber Security Testing Plan Fee Waiver Response Letter (EPID P-2020-PRF-0000; CAC No. 001648)
ML20079D9302020-03-19019 March 2020
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Acceptance Review of LAR Associated with Adopting TSTF-501, Relocate Stored Fuel Oil and Lube Oil Volumes to Licensee Control
ML20076B6322020-03-16016 March 2020
NRR E-mail Capture - Grand Gulf - Acceptance Review for the LAR Associated with Permanent Extension of Appendix J Type a Integrated Leakage Rate Test Frequencies
ML20057G1592020-02-24024 February 2020
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Acceptance Review of LAR Associated with TSTF-439, Eliminate Second Completion Times Limiting Time from Discovery of Failure to Meet an LCO
ML20057G1752020-02-24024 February 2020
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Acceptance Review of LAR Associated with TSTF-566, Revise Actions for Inoperable RHR-Shutdown Cooling Subsystems
ML19242C0122019-08-29029 August 2019
2.206 Petitioner (No Public Meeting Required)
ML19339H4362019-08-26026 August 2019
Request for Information IR 05000416/2019-004
ML19115A3512019-04-25025 April 2019
LTR-19-0177 Tom Gurdziel, E-mail a Matter of Fairness Entergy Grand Gulf Seems to Be Running Rather Steadily at 100 Percent
ML19151A3312019-04-0303 April 2019
(OEDO-19-00053)10 CFR 2.206 Petition Involving Grand Gulf Nuclear Station
ML19095B7622019-04-0303 April 2019
Acceptance Review Results for License Amendment Request to Adopt TSTF-564, Revision 2, Safety Limit MCPR (Minimum Critical Power Ratio), for Grand Gulf Nuclear Station, Unit 1 and River Bend Station, Unit 1 (EPID L-22019-LLA-0051)
ML19078A3772019-03-19019 March 2019
NRR E-mail Capture - Grand Gulf - Official Rais for Relief Request GG-ISI-023, Inservice Inspection Impracticality, Limited Coverage Examinations During the Third 10-Year Inservice Inspection Interval
ML19059A1782019-02-28028 February 2019
Acceptance Review Results for Relief Request No. EN-19-RR-1 to Use ASME Code Case N-831-1 for Entergy Fleet
2024-05-16
[Table view]
Category:Request for Additional Information (RAI)
MONTHYEARML24088A0092024-03-27027 March 2024
NRR E-mail Capture - Entergy Fleet - Final Request for Confirmation of Information (RCI) Re Alternative Request EN-RR-22-001 Concerning ASME Code Case N-752 (L-2022-LLR-0054)
ML23348A1222023-12-14014 December 2023
NRR E-mail Capture - Grand Gulf, River Bend, and Waterford, Unit 3 - 2nd Round of Official RAIs for RR EN-RR-22-001, Use ASME Code Case N-752, Risk Informed Categorization for Class 2 and 3 Systems
ML23116A1462023-04-26026 April 2023
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Final RAI for Request to Update ASME Code Relief Request Safety Evaluations with NRC-Approved Revision of BWRVIP Guidelines (GG-ISI-020, and RBS-ISI-019)
ML23059A0742023-02-27027 February 2023
Information Request, Security IR 2023402
ML22353A6122022-12-19019 December 2022
March 2023 Emergency Preparedness Exercise Inspection - Request for Information
ML22271A8572022-10-0303 October 2022
Notification of Commercial Grade Dedication Inspection (05000416/2023011) and Request for Information
ML22110A1172022-04-19019 April 2022
(GG) 2022 Emergency Preparedness (EP) Program Inspection RFI Sdh 041922
ML21179A1202021-06-28028 June 2021
Notification of NRC Supplemental Inspection of Action Matrix Column 3 (Degraded Performance) Inputs and Request for Information
ML21074A0822021-03-15015 March 2021
Notification of Evaluations of Changes, Tests, and Experiments Inspection (Inspection Report 05000416/2021002) and Request for Information
ML20363A1462020-12-22022 December 2020
Request for Information: Grand Gulf EP Exercise Inspection - March 2021
ML20258A0202020-09-0909 September 2020
EP Program Inspection RFI, Request for Information to Support and Prepare for Emergency Preparedness (EP) Program Inspection Scheduled to Occur the Week of November 16, 2020
ML20260H4422020-09-0808 September 2020
NRR E-mail Capture - Entergy Fleet (Grand Gulf and River Bend) - Official RAIs for RR Associated with Updating ASME Code RR SEs with NRC-Approved Revision of BWRVIP Guidelines (GG-ISI-020 and RBS-ISI-019)
ML20155K7172020-06-0303 June 2020
Notification of NRC Fire Protection Baseline Inspection (NRC Inspection Report 05000416/2020013) and Request for Information
ML20150A6012020-05-29029 May 2020
NRR E-mail Capture - Grand Gulf - Official RAI for LAR Associated with Containment ILRT Interval Change from 10 Years to 15 Years
ML19302E1082019-10-29029 October 2019
Document Request - GG 95001 - August 2 2019
ML19078A3772019-03-19019 March 2019
NRR E-mail Capture - Grand Gulf - Official Rais for Relief Request GG-ISI-023, Inservice Inspection Impracticality, Limited Coverage Examinations During the Third 10-Year Inservice Inspection Interval
ML19063B4882019-03-0404 March 2019
Notification of NRC Triennial Heat Sink Performance Inspection (05000416/2019002) and Request for Information
ML18304A4602018-10-31031 October 2018
NRR E-mail Capture - Final Request for Additional Information - TSTF-425 (L-2018-LLA-0106)
ML18250A3042018-08-30030 August 2018
NRR E-mail Capture - Final Request for Additional Information - Emergency Action Level Scheme Change (L-2018-LLA-0116)
ML18250A3032018-08-0101 August 2018
NRR E-mail Capture - Correction: Draft RAI - EAL Scheme Change (L-2018-LLA-0116)
ML18187A3292018-07-20020 July 2018
Request for Additional Information, Request to Revise Updated Final Safety Analysis Report to Incorporate Tornado Missile Risk Evaluator Methodology Into Licensing Basis
ML18138A4682018-05-23023 May 2018
Supplemental Information Needed for Acceptance of Request for Licensing Action Adoption of TSTF-425, Relocate Surveillance Frequencies to License Control
ML18058A0572018-02-23023 February 2018
Enclosurequest for Additional Information (Letter to J. Giddens Request for Additional Information Regarding Entergy Operations, Inc.'S Decommissioning Funding Plan Update)
ML17257A1422017-09-14014 September 2017
NRR E-mail Capture - Grand Gulf - Official Requests for Additional Information (Rais) for RR GG-ISI-020 to Use BWRVIP Guidelines
ML17235B1752017-08-23023 August 2017
NRR E-mail Capture - Grand Gulf - Official RAI for Relief Request GG-ISI-021 Associated with Fourth Interval Inservice Inspection Using Code Case N-702
ML17214A0992017-08-0202 August 2017
NRR E-mail Capture - Grand Gulf - Official RAIs for LAR Associated with One Cycle Extension of Appendix J Type a ILRT and Drywell Bypass Test Interval
ML17142A2582017-05-19019 May 2017
Notification of NRC Design Bases Assurance Inspection (05000416/2017007) and Initial Request for Information
ML16181A1122016-07-12012 July 2016
Request for Additional Information on Severe Accident Mitigation Alternatives for the Review of the Grand Gulf Nuclear Station, Unit 1, License Renewal Application Environmental Review
ML16117A1862016-04-26026 April 2016
Entergy Fleet Relief Request EN-ISI-15-1 Request for Additional Information - 04/26/16 Email from R. Guzman to G. Davant (CAC Nos. MF7133-MF7136)
ML16013A0642016-01-13013 January 2016
NRR E-mail Capture - Request for Additional Information Entergy CNRO-2015-00023 - Revision to Entergy Quality Assurance Program Manual (Fleet Submittal CAC Nos. MF7086-MF7097)
ML15341A1662015-12-0707 December 2015
NRR E-mail Capture - Entergy Fleet RR-EN-15-1, Request for Additional Information (CACs MF6341-MF6349)
ML15286A1082015-10-28028 October 2015
Requests for Additional Information for the Review of the Grand Gulf Nuclear Station, License Renewal Application
ML15261A5652015-09-24024 September 2015
Request for Additional Information Regarding Proposed Revision of Technical Specifications for Containment Leak Rate Testing
ML15085A4932015-04-0606 April 2015
Request for Additional Information for the Review of the Grand Gulf Nuclear Station License Renewal Application, Set 52
GNRO-2015/00002, Response to Electronic Request for Additional Information Regarding Modification of Technical Specification (TS) 3.8.4, DC Sources Operating Surveillance Requirements (Srs) 3.8.4.2 and 3.8.4.5. Amendment Request Dated 12/9/20142015-03-27027 March 2015
Response to Electronic Request for Additional Information Regarding Modification of Technical Specification (TS) 3.8.4, DC Sources Operating Surveillance Requirements (Srs) 3.8.4.2 and 3.8.4.5. Amendment Request Dated 12/9/2014
ML15036A5642015-02-18018 February 2015
Updated Fluence Methodology License Amendment Request Unacceptable with Opportunity to Supplement
GNRO-2014/00079, Request for Additional Information Regarding Request for Adoption of TSTF-423, Revision 1, Change in Technical Specification End States (CE-NPSD-1186)2014-11-13013 November 2014
Request for Additional Information Regarding Request for Adoption of TSTF-423, Revision 1, Change in Technical Specification End States (CE-NPSD-1186)
GNRO-2014/00076, Response to Request for Additional (RAI) Set 51 Dated September 11, 20142014-11-0606 November 2014
Response to Request for Additional (RAI) Set 51 Dated September 11, 2014
GNRO-2014/00031, Response to Electronic Request for Additional Information Regarding Maximum Extended Load Line Limit Plus Amendment Request, Dated 3/18/20142014-04-11011 April 2014
Response to Electronic Request for Additional Information Regarding Maximum Extended Load Line Limit Plus Amendment Request, Dated 3/18/2014
ML13318A8052014-01-0202 January 2014
Request for Additional Information for the Review of the Grand Gulf Nuclear Station, License Renewal Application (TAC No. ME7493) - Set 50
ML13345A1822013-12-19019 December 2013
Supplemental Information Needed for Acceptance of Licensing Action, Request to Revise Technical Specification to Allow Operation in Expanded Maximum Extended Load Line Limit Analysis Plus (Mellla+) Domain
ML13353A6572013-12-19019 December 2013
Licensed Operator Positive Fitness-For-Duty Test
ML13316B9862013-11-25025 November 2013
Interim Staff Evaluation and Request for Additional Information Regarding Overall Integrated Plan for Reliable Spent Fuel Pool Instrumentation (Order Number EA-12-051)
ML13263A2252013-11-21021 November 2013
LRA Draft RAI Set 48
ML13304B4182013-11-0101 November 2013
Request for Additional Information Associated with Near-Term Task Force Recommendation 2.3, Seismic Walkdowns
ML13260A0062013-09-16016 September 2013
Email, Request for Additional Information, Round 3, Request to Revise Technical Specifications and Surveillance Requirements to Support Operation with a 24-Month Fuel Cycle in Accordance with Generic Letter 91-04
ML13238A2342013-09-12012 September 2013
Requests for Additional Information for the Review of the Grand Gulf Nuclear Station, License Renewal Application (TAC No. ME7493) - Set 49
ML13227A3942013-08-28028 August 2013
Request for Additional Information for the Review of the Grand Gulf Nuclear Station, License Renewal Application (TAC No. ME7493) - Set 47
ML13226A1902013-08-14014 August 2013
Request for Additional Information Email, Round 2, Request to Revise FOL to Delete 2.C(32), Partial Feedwater Heating, to Allow Plant to Operate with Final Feedwater Temperature Reduction at End of Fuel Cycle
ML13207A1242013-07-30030 July 2013
Request for Additional Information, Overall Integrated Plan in Response to 3/12/2012 Commission Order Modifying Licenses with Regard to Reliable Spent Fuel Pool Instrumentation (Order No. EA-12-051)
2024-03-27
[Table view] |
Text
From: Wang, Alan Sent: Friday, March 04, 2011 9:07 AM To: Perino, Christina; JACKSON, RITA R Cc: ENGLAND, LESLEY A; Lent, Susan; Burkhardt, Janet
Subject:
Grand Gulf Nulclear Power Station Cyber Security Plan Request for Additional Information (ME4379}
Christina and Rita, By letter dated July 22, 2010 (Agencywide Documents Access and Management System (ADAMS) Accession No. ML102070558), Entergy Operations, Inc (Entergy, the licensee) submitted Entergy Letter GNRO-2010/00047, Operating License Amendment Withdrawal and Request - Grand Gulf Nuclear Station Cyber Security Plan, which superseded the previous submittal on May 24, 2010. Entergy submitted a request for revision to the Facility Operating License No. NPF-29 and review and approval of the Cyber Security Plan (CSP) for the Grand Gulf Nuclear Station, Unit 1 (GGNS), in accordance with Title 10 of the Code of Federal Regulations (10 CFR), Section 73.54, Protection of digital computer and communication systems and networks.
The NRC staff has determined that the following additional information is needed to complete our review of this amendment. This request for additional information (RAI) was discussed with Mr. Les England of your staff on March 2, 2011, and it was agreed that a response would be provided by April 4, 2011. If circumstances result in the need to revise the requested response date, please contact me at (301) 415-1445 or via e-mail at Alan.Wang@nrc.gov. The NRC staff has determined that no security-related or proprietary information is contained therein.
- 1. Records Retention The regulations in 10 CFR 73.54(c)(2) requires licensees to design a cyber security program to ensure the capability to detect, respond to, and recover from cyber attacks.
Furthermore, 10 CFR 73.54(e)(2)(i) requires licensees to maintain a CSP plan that describes how the licensee will maintain the capability for timely detection and response to cyber attacks. The ability for a licensee to detect and respond to cyber attacks requires accurate and complete records and is further supported by 10 CFR 73.54(h),
which states that the licensee shall retain all records and supporting technical documentation required to satisfy the requirements of 10 CFR Section 73.54 as a record until the Commission terminates the license for which the records were developed, and shall maintain superseded portions of these records for at least 3 years after the record is superseded, unless otherwise specified by the Commission.
The licensees CSP in Section 4.13 states that Critical Digital Asset (CDA) audit records and audit data (e.g., operating system logs, network device logs) are retained for a period of time that is less than what is required by 10 CFR 73.54(h).
Please explain the deviation from the 10 CFR 73.54(h) requirement to retain records and supporting technical documentation until the Commission terminates the license (or to maintain superseded portions of these records for at least 3 years) and how that meets the requirements of 10 CFR 73.54.
- 2. Implementation Schedule The regulations in 10 CFR 73.54 require licensees to submit a CSP that satisfies the requirements of this section for Commission review and approval. Furthermore, each submittal must include a proposed implementation schedule and the implementation of the licensees cyber security program must be consistent with the approved schedule.
Paragraph 73.54(a) of 10 CFR requires licensees to provide high assurance that digital computer and communication systems and networks are adequately protected against cyber attacks, up to and including the design basis threat.
The completion of several key intermediate milestones (items (a) through (g) below) would demonstrate progress toward meeting the requirements of 10 CFR 73.54. The NRC staffs expectation is that the key intermediate milestones will be completed in a timely manner, but no later than December 31, 2012. The key CSP implementation milestones are as follows:
a) Establish, train and qualify Cyber Security Assessment Team, as described in Section 3.1.2, Cyber Security Assessment Team, of the CSP.
b) Identify Critical Systems and CDAs, as described in Section 3.1.3, Identification of Critical Digital Assets, of the CSP.
c) Implement cyber security defense-in-depth architecture by installation of
[deterministic one-way] devices, as described in Section 4.3, Defense-In-Depth Protective Strategies, of the CSP.
d) Implement the management, operational and technical cyber security controls that address attacks promulgated by use of portable media, portable devices, and portable equipment as described in Appendix D, Section 1.19, Access Control for Portable and Mobile Devices, of Nuclear Energy Institute (NEI) 08-09, Revision 6.
e) Implement observation and identification of obvious cyber related tampering to existing insider mitigation rounds as described in Appendix E, Section 4.3, Personnel Performing Maintenance and Testing Activities, and Appendix E, Section 10.3, Baseline Configuration, of NEI 08-09, Revision 6.
f) Identify, document, and implement cyber security controls to physical security target set CDAs in accordance with Section 3.1.6, Mitigation of Vulnerabilities and Application of Cyber Security Controls, of the CSP.
g) Ongoing monitoring and assessment activities will commence for those target set CDAs whose security controls have been implemented, as described in Section 4.4, Ongoing Monitoring and Assessment, of the CSP.
h) Full implementation of the CSP for all safety, security, and emergency preparedness functions.
Please provide a revised CSP implementation schedule that identifies the appropriate milestones, completion dates, supporting rationale, and level of detail to allow the NRC to evaluate the licensees proposed schedule and associated milestone dates which
include the final completion date. It is the NRCs intention to develop a license condition incorporating your revised CSP implementation schedule containing the key milestone dates.
- 3. Scope of Systems Paragraph 73.54(a) of 10 CFR requires licensees to provide high assurance that digital computer and communication systems and networks are adequately protected against cyber attacks, up to and including the design basis threat as described in 10 CFR 73.1.
In addition, 10 CFR 73.54(a)(1) states that The licensee shall protect digital computer and communication systems and networks associated with:
(i) Safety-related and important-to-safety functions; (ii) Security functions; (iii) Emergency preparedness functions, including offsite communications; and (iv) Support systems and equipment which, if compromised, would adversely impact safety, security, or emergency preparedness functions.
Subsequent to the issuance of the cyber security rule, the NRC stated that 10 CFR 73.54 should be interpreted to include structures, systems, and components (SSCs) in the balance of plant (BOP) that have a nexus to radiological health and safety (ADAMS Accession No. ML103490344, dated November 19, 2010). The SSCs in the BOP are those that could directly or indirectly affect reactivity of a nuclear power plant and could result in an unplanned reactor shutdown or transient and are, therefore, within the scope of important-to-safety functions described in 10 CFR 73.54(a)(1).
Furthermore, the NRC issued a letter to NEI dated January 5, 2011 (ADAMS Accession No. ML103550480) that provided licensees with additional guidance on one acceptable approach to comply with the Commissions policy determination.
Please explain how the scoping of systems provided by CSP for GGNS, meets the requirements of 10 CFR 73.54 and the additional guidance provided by the NRC.
