Text

www.holtec.com www.smrllc.com ISG-04 Conformance Analysis HOLTEC INTERNATIONAL Date: 8/23/23 Presented By: Patrick Essner SMR, LLC, A Holtec International Company Krishna P. Singh Technology Campus One Koltec Boulevard Camden, NJ 08104, USA

[Not Export Controlled]

www.holtec.com

' "WWw.smrllc.Com lSG-04 Conformance Analysis Date: 8/23/23 Presented By: Patrick Essner SMR, LLC, A Holtec International Company Krishna P. Singh Technology Campus One Holtec Boulevard Camden, NJ 08104, USA

[Not Export Controlled]

.____4

Agenda

" Purpose and Outcome

" Licensing Strategy

" l&C Design Principles V Independence

" communication Independence

" ISG-04

" Conformance of the SMR-160 design to ISG-04 I...

HOLTEC I I t II R N A 1 I C) N A L holtec.com smrltc.com I Page 2 IIIII Agenda HOLT)EC I Purpose and Outcome I Licensing Strategy I I&C Design Principles 1

Independence Communication Independence I ISG-04 I Conformance of the SMR160 design to ISG-04 hoitec.com l smrllc.com l Page 2

Purpose and Outcome U The purpose of the meeting is to c4fl" UUUUU WSL HPLT Familiarize NRC staff with l&C architecture of the SMR-160, focusing on the communication interfaces V Review the regulatory approach related to Digital l&C communications V Understand future NRC work on in this area U The outcome is to obtain feedback from the NRC stall on V The approach for complying with regulations in this area V The specific ways the SMR-160 l&C complies with available guidance and regulations V Future revisions to NRC guidance or regulation in this area holtec.com smrllc.com I Page 3 IIIII Purpose and Outcome HTQJ; E I The purpose of the meeting is to

\\l Familiarize NRC staff with l&C architecture of the SMR-160, focusing on the communication interfaces v

Review the regulatory approach related to Digital l&C communications 1

Understand future NRC work on in this area I The outcome is to obtain feedback from the NRC staff on Y The approach for complying with regulations in this area 1

The specific ways the SMR-160 l&C complies with available guidance and regulations V Future revisions to NRC guidance or regulation in this area holtec.com l smrllc.com l Page 3

__ I.

Licensing Strategy for SMR-160 I&C

" Following Part SO Process

" DNRL-ISG-2022-O1, provides guidance for l&C content related to Part SO V Points to guidance in the design-specific review standard (DSRS) for NuScale

" Generic for I&C focused on Digital l&C systems

" Incorporated some of the lessons learned from review of large LWR designs.

" The guidance emphasizes fundamental instrumentation and control (l&C) design principles of independence, redundancy, predictability and repeatability, and diversity and defense in depth.

holtec.com I smrllc.com I Page 4 IIIII Licensmg Strategy for SMR-160 I&C ttEQNkloEE l Following Part 50 Process I DNRLlSG-2022-01, provides guidance for l&C content related to Part 50 v

Points to guidance in the design-specific review standard (DSRS) for NuScale Generic for l&C focused on Digital l&C systems I

Incorporated some of the lessons learned from review of large LWR designs.

I The guidance emphasizes fundamental instrumentation and control (l&C) design principles of independence, redundancy, predictability and repeatability, and diversity and defense in depth.

holtec.com l smrllc.com l Page 4

DNRL-ISG-2022-O1 "u"n HOLT I N I E R N A I IC) N A I

" In evaluating a CP application, the NRC staff should focus on the following elements of the l&C design:

An overall l&C architecture that demonstrates adherence to the fundamental l&C design principles.

Architecture overview presented October 2022 (Public Meeting ML22263A014)

'ti Plant safety functions allocated to each of the safety-related l&C systems.

i Proposed communications between safety-related and non-safety-related l&C systems.

Covered in this presentation V Regulations that the applicant intends to comply with for the l&C design.

V Regulations that the applicant intends to take exemption from or deems not applicable to its design.

V Topical reports incorporated by reference in the application.

holtec.com I smrllc.com I Page 5 IIIII H O DNRL-ISG-2022-01WWIT.EC I

In evaluating a CP application, the NRC staff should focus on the following elements of the l&C design:

\\I

\\I Y

Y Y

Y An overall l&C architecture that demonstrates adherence to the fundamental l&C design principles.

Architecture overview presented October 2022 (Public Meeting ML22263A014)

Plant safety functions allocated to each of the safety-related l&C systems.

Proposed communications between safety-related and non-safety-related l&C systems.

I Covered in this presentation Regulations that the applicant intends to comply with for the l&C design.

Regulations that the applicant intends to take exemption from or deems not applicable to its design.

Topical reports incorporated by reference in the application.

holtec.com l smrllc.com I Page 5

I&C Fundamental Design Principles

" independence

" redundancy

" predictability and repeatability

" diversity and defense-in-depth (D3)

__ I....

" HOLTEC N I R N A 1 I () \\ \\ L holtec.com I smrllc.com I Page 6 Illll I&C Fundamental Desugn PrInCIples HOLTEC I independence I redundancy I predictability and repeatability I diversity and defense-in-depth (D3) holtec.com l smrllc.com l Page 6

I&C Fundamental Design Principles

" in ependence

" redundancy

" predictability and repeatability

" diversity and defense-in-depth (D3)

HOLTEC I. R NAI I0\\ '.

holtec.com I smrllc.com I Page 7 IIIII I&C Fundamental Desugn PrInCIples

.HOL.C I redundancy l predictability and repeatability I diversity and defense-in-depth (D3) holtec.com I smrllc.com l Page 7

Independence U Required to demonstrate independence of the l&C systems V between redundant portions of a safety system V between safety systems and the effects of a DBE V between safety systems and other systems U Concepts to address are:

V physical independence V electrical independence V communications independence V functional independence

""uii HOLTEC I NT Ii R NAT IONA L holtec corn I smrllc.com I Page 8 IIIII Independence HOLW l Required to demonstrate independence of the l&C systems V between redundant portions of a safety system Y

between safety systems and the effects of a DBE Y

between safety systems and other systems I Concepts to address are:

V physical independence V

electrical independence V communicationsindependence Y

functional independence holtec.com I smrllc.com l Page 8

Independence

" Required to demonstrate independence of the l&C systems V between redun ant portions of a safety system between safety systems and the effects of a DBE V between safety systems and other systems

" Concepts to address are:

V physical independence V electrical independence V co munications independence V functional independence U....

HOLTEC I N T ( K N A I C) N A I holtec.com I smrlic.com I Page 9 IIIII Independence HOLW I Required to demonstrate independence of the l&C systems Y between redundant portions of a safety systeig

55);

VI between safety systems and the effects of a DBE V Triatween safety systems andmthersst I Concepts to address are:

V physical independence Y

electrical independence V g1:immunlcatlonsIndepenrdg V

functional independence holtec.com l smrllc.com l Page 9

Communications Independence

__ U..'.

HOLTEC I N T t R N A I I C) N A L U Communication independence must exhibit adequate independence V among redundant portions of the safety system V between safety and nonsafety systems U The design of the data communication system V meets IEEE Std 603-1991, Section 5.6 V conforms to the guidance for the separation and isolation of the data processing functions of interconnected computers in IEEE Std 7-4.3.2, Section 5.6, as endorsed by RG 1.152.

holtec.com I smrllc.com I Page 10 Communications Independence HOLTEC I Communication independence must exhibit adequate independence V among redundant portions of the safety system Y

between safety and nonsafety systems I The design of the data communication system V

meets IEEE Std 603-1991, Section 5.6 Y

conforms to the guidance for the separation and isolation of the data processing functions of interconnected computers in IEEE Std 7-4.3.2, Section 5.6, as endorsed by RG 1.152.

holtec.com l smrllc.com l Page 10

DI&C-ISG-04 Highly-Integrated Control Rooms - J ""

Communications Issues (HICRc)

" This Interim Staff Guidance addresses the design and review of digital systems proposed for safety-related service in nuclear power plants.

V Address only selected digital aspects of such systems.

" Specifically addresses issues related to V interactions among safety divisions V between safety-related equipment and equipment that is not safety-related.

holtec.com smrllc.com I Page 11 DI&C-ISG-04 Highly-Integrated Control Rooms -

HgLIT'EE Communications Issues (HICRc)

I This Interim Staff Guidance addresses the design and review of digital systems proposed for safety-related service in nuclear power plants.

\\l Address only selected digital aspects of such systems.

I Specifically addresses issues related to V

interactions among safety divisions V between safety-related equipment and equipment that is not safety related.

holtec.com l smrllc.com l Page 11

DI&C-ISG-04 Areas of Interest nn"

- HOLT I \\I I I. 1< N A 1 I C) N \\ I

1. interdivisional communications - communications among different safety divisions or between a safety division and a non-safety entity

2. command prioritization - selection of a particular command to send to an actuator when multiple and conflicting commands exist

3. multidivisional control and dispi displays that are associated witl safety and nonsafety functions y stations - use of operator workstations or multiple safety divisions and/or with both

4. digital system network configuration - the network or other interconnection of digital systems that might affect plant safety or conformance to plant safety analysis assumptions

" Areas of Interest #1 through 3 are each addressed in a separate section of ISG-04.

Area of Interest #4 has implications concerning each of the first three and is incorporated into those sections as needed holtec corn I smrllc.com I Page 12 DI&C-ISG-04 Areas of Interest HOLTEC 1.

2.

interdivisional communications - communications among different safety divisions or between a safety division and a non-safety entity command prioritization - selection of a particular command to send to an actuator when multiple and conflicting commands exist multidivisional control and display stations - use of operator workstations or displays that are associated with multiple safety divisions and/or with both safety and nonsafety functions digital system network configuration - the network or other interconnection of digital systems that might affect plant safety or conformance to plant safety analysis assumptions I Areas of Interest #1 through 3 are each addressed in a separate section of ISG-O4.

Y Area of Interest #4 has implications concerning each of the first three and is incorporated into those sections as needed holtec.com I smrllc.com l Page 12

Questions for Staff

_ " I HOLT

" Does the staff see issue in utilizing lSG-04 guidance in complying with regulations related to digital l&C and conforming to guidance in the NuScale DSRS?

" Are there any plans to consolidate ISG-04 guidance into a BTP or revision to Chapter 7 NUREG 0800 guidance?

V If so is there a timeline?

" Are there any gaps the NRC staff feels are in lSG-04 that would need to be addressed by a licensee?

holtec.com I smrllc.com I Page 13 IIIII Questions for Staff "gs-IDES l Does the staff see issue in utilizing lSG-04 guidance in complying with regulations related to digital l&C and conforming to guidance in the NuScale DSRS?

I Are there any plans to consolidate lSG-04 guidance into a BTP or revision to Chapter 7 NUREG 0800 guidance?

V If so is there a timeline?

I Are there any gaps the NRC staff feels are in lSG-04 that would need to be addressed by a licensee?

holtec.com I smrllc.com l Page 13

Summary of Closed Meeting Materials

__ nn" HOLTEC I N I I K N A I I C) N A I U Overview of the l&C architecture focusing on communication V between redundant portions of a safety system V between safety systems and other systems

" Summary of how the SMR-160 l&C architecture complies with staff positions associated with the three focus areas of ISG-04 V interdivisional communications V command prioritization V multidivisional control and display stations

• • • Transition to CLOSED portion of the meeting at this time***

holtec corn I smrllc.com I Page 14 IIIII Summary of Closed Meeting Materials idOLmEC I Overview of the l&C architecture focusing on communication Y

between redundant portions of a safety system V

between safety systems and other systems I Summary of how the SMR-16O l&C architecture complies with staff positions associated with the three focus areas of ISG-O4 V

interdivisional communications VI command prioritization V multidivisional control and display stations

• • • Transition to CLOSED portion of the meeting at this time***

holtec.com l smrllc.com l Page 14

"i"n Closed Portion Agenda HOLTEC El:

holtec.com I smrllc.com I Page 15 Closed Portion Agenda

((

holtec.com l smrllc.com l Page 15

""in Scope HOLTEC I ILk NA I IC) NAL El:

holtec.com I smrltc corn Page 16 lllll Scope HOW holtec.com l smrllc.com l Page 16

SMR-160 I&C Architecture EL HOLTEC I \\ IL RN All U' \\ I holtec.corn I srnrllc corn I Page 17 IIIII SMR-160 I&C Archltecture HOLTEC

((

holtec.com l smrllc.com l Page 17

SMR-160 I&C Architecture fl HOLTEC I L R N A 1 I C) N, L EL holtec.com I smrllc.com I Page 18 IIIII SM R-160 I&C Architecture

.HOLTEC

[I holtec.com l smrllc.com l Page 18

SMR-160 I&C Architecture

[I:

4" U....

iW HOLTEC I I I holtec.com I smrllc.com I Page 19 IIIII SMR-160 I&C Architecture WOLTEC

((

holtec.com l smrllc.com l Page 19

Interdivisional Communications U

HOLTEC I N I I R N A I I I ?C A I

[I:

holtec.com J smrllc.com I Page 20

@IIIII InterdIVIsmnal Communications HOL

((

holtec.com l smrllc.com l Page 20

Interdivisional Communications HOLTEC

() \\

EL holtec.com smrllc.com I Page 21

@IIIII Interdwusnonal Communications

.HOLW

[I holtec.com l smrllc.com l Page 21

UI.

Interdivisuonal Communications HO LTEC I N I [RN A II() N Al El:

holtec.com I smrllc.com I Page 22

@IIIII InterdIVIsmnal Communications HOL

((

holtec.com l smrllc.com l Page 22

Interdivisional Communications HOLTEC

()

[I:

holtec corn I srnrllc.corn I Page 23

@IIIII InterdIVISIonaI Communications

.HOLW

((

holtec.com l smrllc.com l Page 23

Interdivisional Communications H P LT E C

[F holtec.com I smrllc.com I Page 24

@IIIII InterdIVISIonal Communications

.HOLW

[I holtec.com l smrllc.com l Page 24

nu" Interdivisional Communications H,9LTEC EE holtec.com I smrtlc.com I Page 25

@IIIII InterdIVISIonal Communications HOL

((

holtec.com l smrllc.com l Page 25

Interdivisional Communications __ Un HOLTEC II I()

EL holtec.com smrllc.com I Page 26

@IIIII InterdIVISIonal Communications HE

((

holtec.com l smrllc.com l Page 26

Interdivisional Communications EL qfl\\ "UIU" HOLTEC holtec corn I smrllc.com I Page 27

@IIIII InterdIVIsmnal Communicatlons

.HOLW

((

holtec.com l smrllc.com l Page 27

Command Prioritization U....

HOLTEC N I F. H N A 1 I U N \\ I El:

holtec.com I smrllc.com I Page 28

@IIIII Command Prlorltlzatlon HOL

((

holtec.com l smrllc.com l Page 28

Command Priorutuzatuon HOLTEC

[I:

holtec.com I smrllc.com I Page 29

@IIIII Command Prlorltlzatlon HOLW

[I holtec.com l smrllc.com l Page 29

Command Pruoritizatuon. I HOLTEC IN It RN All C) N,'

FE holtec.com I smrllc.com I Page 30 Command Prioritization

[I holtec.com I smrllc.com l Page 30

Multidivisional Control and Display Stations LI:

Nuns HOLTEC

!I I(} \\

holtec.com I smrllc.com I Page 31

@lllll MultIdIVIsmnal Control and Display Stations HOLMEC

((

holtec.com I smrHc.com l Page 31

Multidivisional Control and Display Stations HOLTEC

[I:

holtec.com I smrllc.com I Page 32 IIIII Multidivisional Control and Display Stations HOEmE

((

holtec.com l smrllc.com I Page 32

4fl I..

Conclusion 'SP HOLTEC FE holtec.com I srnrllc.com I Page 33 Conclusion

((

holtec.com l smrllc.com l Page 33

Questions or Comments?

II...

HOLT Nil RNAI ()\\ \\1 I Are there any aspects of evaluation that are lacking in the current Whitepaper?

holtec.com I smrllc.com J Page 34 Questions or Comments?

I Are there any aspects of evaluation that are lacking in the current Whitepaper?

holtec.com l smrllc.com l Page 34