Text

Proposed Outline for DI&C-ISG-06 Revision 2 Formatted: Space After: 18 pt August 10, 2017 (includes draft System Architecture section outline and talking points) Formatted: Font: Italic Table of Contents A. Introduction B. Purpose B.1 Background (explains original document)

B.2 Revision (explains changes to document)

C. Digital I&C Review Process C.1 Original Process Overview C.1.1 Pre-Application (Phase 0)

C.1.2 Initial Application (Phase 1)

C.1.3 Continued Review and Audit (Phase 2)

C.1.4 Implementation and Inspection (Phase 3)

C.2 Alternate Tier 1 Process C.2.1 Pre-Application C.2.2 Application, Review, and Audit C.2.3 Implementation and Inspection D. Review Areas for License Amendment Process D.1 System Description (including block diagram)

D.2 System Architecture D.2.1 Existing Architecture Describe and illustrate the existing system architecture, including identification of which portion(s) of the system are being replaced.

D.2.2 Replacement Scope Functions and Performance Define the functions performed by the portion(s) of the system being replaced.

This is accomplished by attaching the System Requirements Specification for the upgraded portion(s) to the LAR.

Address the following clauses (defining the functional design basis) from IEEE Std. 603-1991

• Clause 4.1, Design Basis Events Formatted: Do not check spelling or grammar Page 1

Proposed Outline for DI&C-ISG-06 Revision 2 Formatted: Space After: 18 pt August 10, 2017 (includes draft System Architecture section outline and talking points) Formatted: Font: Italic

• Clause 4.2, Safety Functions and Protective Actions

• Clause 4.3, Permissive Conditions

• Clause 4.4, Variables Monitored

• Clause 4.5, Criteria for Manual Protective Actions

• Clause 4.6, Minimum Number and Location of Sensors

• Clause 4.7, Range of Conditions

• Clause 4.8, Conditions Causing Functional Degradation

• Clause 4.9, Methods Used to Determine Reliability

• Clause 4.10, Critical Points in Time or Plant Conditions

• Clause 4.11, Equipment Protective Provisions

• Clause 4.12, Special Design Basis D.2.3 New Architecture Describe and illustrate the new system architecture.

Address the following clauses (defining the service function design basis) from IEEE 603-1991 and/or IEEE 7-4.3.2-2003:

• Clause 5.2, Completion of Protective Action

• Clause 5.5, System Integrity

• Clause 5.7, Capability for Test and Calibration

• Clause 5.8, Information Displays

• Clause 5.9, Control of Access

• Clause 5.10, Repair

• Clause 6.5, Capability for Testing and Calibration

• Clause 6.6, Operating Bypass

• Clause 6.7, Maintenance Bypass

• Clause 6.8, Setpoints (partial - multiple setpoints for single variable, depending on plant condition)

• Clause 7.3, Completion of Protective Action

• Clause 7.4, Operating Bypass

• Clause 7.5, Maintenance Bypass D.2.3.1 Functional Allocation Describe and explain the decomposition and allocation of functions to the various elements of the proposed architecture (e.g., hardware, software, plant personnel using human system interfaces).

D.2.3.2 External Interfaces Define all interfaces between the portion(s) of the system being replaced and:

Formatted: Do not check spelling or grammar Page 2

Proposed Outline for DI&C-ISG-06 Revision 2 Formatted: Space After: 18 pt August 10, 2017 (includes draft System Architecture section outline and talking points) Formatted: Font: Italic

• the portions of the plant remaining unchanged

• plant personnel (e.g., operators, maintainers, engineers).

Address the following clauses from IEEE 603-1991 and/or IEEE 7-4.3.2-2003:

• Clause 5.13, Multi-Unit Stations

• Clause 8, Power Source Requirements This includes the communications to external systems. Features that affect SDOE are mentioned, but discussed in the SDOE section.

D.2.3.3 Internal Interfaces Define interfaces between the different elements of the proposed architecture that are within the scope of the upgraded portion(s) of the system.

This includes workstations. Features that affect SDOE are mentioned, but discussed in the SDOE section.

D.2.4 Fundamental Design Principles in the New Architecture Describe how the fundamental design principles are reflected in the new system architecture.

D.2.4.1 Redundancy Address the following clauses from IEEE 603-1991 and/or IEEE 7-4.3.2-2003:

• Clause 5.1, Single Failure Criterion

• Clause 5.15, Reliability D.2.4.2 Independence Address the following clauses from IEEE 603-1991 and/or IEEE 7-4.3.2-2003:

• Clause 5.6, Independence

• Clause 5.11, Identification

• Clause 6.3, Interaction with Other Systems D.2.4.3 Deterministic Behavior Address the following clauses from IEEE 603-1991:

• Clause 6.1, Automatic Control

• Clause 6.2, Manual Control

• Clause 7.1, Automatic Control

• Clause 7.2, Manual Control Formatted: Do not check spelling or grammar Page 3

Proposed Outline for DI&C-ISG-06 Revision 2 Formatted: Space After: 18 pt August 10, 2017 (includes draft System Architecture section outline and talking points) Formatted: Font: Italic D.2.4.4 Defense-in-Depth & Diversity BTP 7-19, RIS 2015-?? - Consider some of old ISG-6 D.6 (New 603-2017/2018 Clause 5.16)

D.2.4.5 Simplicity of Design This principle is more subjective than the others; therefore, rather than attempting to justify the adequacy of proposed designs simplicity, address it by explaining the rationale for those design decisions that result in the system being more complex than it might otherwise need be. This will often be the result of needing to satisfy a regulatory requirement (e.g., surveillance testing and improved maintainability/operability for faulted conditions).

Address the following clauses from IEEE 603-1991:

• Clause 6.4, Derivation of System Inputs D.2.5 New Design Basis Address the differences, if any, between the design basis for the old system and the design basis for the new system (e.g., need for a diverse actuation system).

D.3 (Summary of) Modification Hardware Planning and Processes (e.g., EQ, EMC)

D.4 (Summary of) Application Software Planning and Processes (e.g., V&V, CM)

D.5 Platform Topical Report SE Report D.5.1 Applicability of Topical Report D.5.2 Disposition of Topical Report Post-SE Report Platform Changes D.5.3 Resolution of Topical Report SE Report Open Items D.6 (Unified Compliance Matrix for) IEEE Stds. 603 and 7-4.3.2 D.7 (Changes to) Technical Specifications (e.g., safety limits, setpoints)

D.8 Secure Development and Operational Environment Enclosure A - Sample Summary of Level 0 Public Meeting to Discuss Plans to Request NRC Approval in Support of a Digital I&C Upgrade License Amendment Request Information to be Provided in Support of a Digital I&C Upgrade License Amendment Request (Original Process)

Formatted: Do not check spelling or grammar Page 4

Proposed Outline for DI&C-ISG-06 Revision 2 Formatted: Space After: 18 pt August 10, 2017 (includes draft System Architecture section outline and talking points) Formatted: Font: Italic Enclosure B - Information to be Provided in Support of a Digital I&C Upgrade License Amendment Request (Alternate Tier 1 Process)

Enclosure C - Glossary for License Amendment Request Enclosure DC - Sample Safety Evaluation for Digital I&C License Amendment Formatted: Do not check spelling or grammar Page 5