ML17139B887

From kanterella
Revision as of 16:54, 4 February 2020 by StriderTol (talk | contribs) (Created page by program invented by StriderTol)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
App a to Rev 1 to Control Sys Power Supply & Sensor Malfunction Study, Technical Procedure for Performance of Analysis.
ML17139B887
Person / Time
Site: Susquehanna Talen Energy icon.png
Issue date: 03/31/1982
From:
EDS NUCLEAR, INC.
To:
Shared Package
ML17139B884 List:
References
02-0160-1102-AP, 2-160-1102-AP, NUDOCS 8310180485
Download: ML17139B887 (35)


Text

Report No. 02-0160-1102 Revision 0 APPENDIX A TECHNICAL PROCEDURE FOR THE PERFORMANCE OF THE ANALYSIS 83i0180485 831014 PDR *DOCK 05000387 P PDR

,q II

- TITLE: Control Systems Power Supply and Sensor'alfunction Study

  • A INSTRUCTION NUMBER: 0160-004-001 PAGE 1 OF CLIENT: Penns 1vania Poker and Li ht Co an PP L PROJECT: Susquehanna Steam Electric Station (SSES)

JOB NUMBER($).. 0160-004-671 DIVISION(S) Systems Engineering REY.

ISSUE I DATE PREPARED APPROVED '.CONCURRENCE June 30, 1981 Aug. 14, 198 Dec. 17, 198

EDS NUCLEAR 1NC.

TITLF'ontrol Systems Power Supply and Sensor Malfunction Study UMBER: 0160-004~01 REVISlON: 2 PAGE 2 OF 19 TABLE OF CONTENTS Section ~acae le 0 PURPOSE 2~0 PROJECT ZNSTRUCTZONS 3~0 QUALZTY ASSURANCE REQUZREMENTS 14 A endices APPENDZX A List of Figures 15 Fi re No. Tf.tie Plant Mode/Safety Functions CSXD Cascading Power Supply Commonality Diagram Chapter 15 Comparative Analysis Operator/Safety System Comparative Analysis Recommendations for Reanalysis or Modification Project Znstructions Change Notice Log 10 Project Znstruction Change Notice APPENDZX B Control, System Zdentification Diagram- 16 Procedure for Preparation

EDS NUCLEAR INC.

Control Systems Power Supply and Sensor Malfunction Study NVMBER'160-004-001. REVlSION: 2 PAGE 3 OF TABLE OF CONTENTS (Cont.)

Section Pacae APPENDZX C Commonality Diagram- 17 Procedure for Preparation APPENDZX D Failure Modes and Effects Analysis- 18 Procedure for Preparation APPENDZX E Changes to the Project Znstructions 19

EDS NUCLEAR INC.

...'TtTLE-'ontrol Systems Power Supply and Sensor Malfunction Study

,>>IO>> Q ..+>>>>Q ~YJPW $ P~>>>>. 7 Q qgpvE>>>> w)) QJ>>."I g lQ p(~ '>>>>'>>>>>>+>>>>>>Q>>>>~wg>>>>e q uMQPR: 0160 004W01 REVISiON: PAGE 4 OF 1o0 PURPOSE The Susquehanna Steam Electric Station (SSES) Safety Evaluation Report (April, 1981) imposed additional requirements pertaining to Section 7.7 Control S stems Not Re ired for Safet ~ Specifically, the requirements include:

Identification of power sources or sensors that provide power or signals to two or more control systems

2. Analysis of the effects of the failure or malfunctiwn of these common power supplies or sensors to determine consequences are outside the boundary of Chapter 15 analysis if the resulting or beyond the capabilities of operators or safety systems.

The Project Instructions contained herein define the methodology developed by EDS Nuclear to respond to these requirements. Project Instructions Change Notices will be issued in the event'that the scope of work is modified or that new tasks are identified which fall outside the scope of existing tasks. The procedure for making changes to the Project 1'nstructions is contained in Appendix E.

~rr >>

EOS NUCLEAR INC.

Contxol Systems Powex'upply and wary'" Sensor Malfunction Study vg tg,,yule b, ~llr('~ d~%lq, w g,< t ' wwv PC@ ~

A. ww 'lV~< wl~, P,' j 4ge~4t ~m +<mr V (ww) 'k0 W, p)1>if "%' 'ft' UMBER: 0160-004-001 REVISION: 2 PAGE ~ OF lg 2~0 PROJECT INSTRUCTIONS The specifiC Project Instructions are delineated herein by task number coxresponding to the tasks identified in the scope of work sections of EDS proposal 16-11.

Task No 1 Develop Administrative and Technical Pzocedures Objective: To finalize the overall program scope and methodology-

1. Develop the Project Instructions, Interface Control Instructions and the Project Quality Assurance File.
a. Project Instructions - The Project Instructions identify the design or analysis steps that. are to be implemented by the px'oject team in order to accomplish its defined tasks'.

Interface Contxol Instructions - The Zntezface Control Znstxuctions (ZCZ) define the lines of communication between EDSI the client, and other support organizations. The ZCI includes administrative procedures for maintaining written and verbal communications throughout all phases of the project.

Quality Assurance File - The Quality Assurance File is I

c ~

the vehicle through which the EDS Quality Assurance Program is implemented at the project level.

The development of the above documents will be accomplished in accordance with Rev. 15 of the EDS Quality Assurance Manual.

Task No 2 Assemble Design Input, Znfoxmation Objective: To assemble all pertinent information required to support the project.

1. Coordinate with PAL to identify and collect the documentation required to support the project. Included in this documentation will be all items which will aid EDS in its efforts to identify common power supplies and sensors and to analyze the effects of their failure or malfunction upon the appropriate contxol systems

EDS NUCLEAR INC.

>>'*>> a<~<<v~:,!" '>>'A '>>'v~ 'a'vv>>v!v'>> vv'N>~~'i++>>'~awk<<e)'vvv 'vty>>'v'l~'vv'te'>>. v,!l)t '~'>>v ~, 'i; a'!'I!

vt +>>! ~ '<<v v<< "t!!

Control Systems Power Supply and Sensor Malfunction Study

, l<<<<N>><<tv 'pVK<>>vi)!'l~)>l~ ~ j~LO' t v ~j !>>>>!!!""V4 "-'!!>>>>vv) g v Q' <<<<~v>> * ~N' <<>>i v>>

! ', << ., <<4 ! '! !!!>> v UMBER: 0160-004-001 REVISION: 2 PAGE 6 OF 19

2. Xn the process of identifying power supplies and sensors, it may be necessary to obtain amplifying information from either Bechtel or General Electric EDS is authorized to coordinate directly with these organizations in order to expedite obtaining the required infoxmation. PPGL is to be informed of the need %or this additional information.
3. The following information, as a minimum, will be transmitted to EDS:
a. SSES Safety Evaluation Report April, 1981 ba SSES Final Safety Analysis Report c~ System Descriptions (General Electric Specifications) dl Piping and Xnstrumentation Diagrams (PaXD)
e. Electrical One Line Diagrams fo Electrical Elementary Diagrams g<< Xnstrument Index ho Setpoint Xndex Functional Control Diagrams jo Loop Diagrams
k. Plant Procedures " Operating/Abnormal/Emergency
4. All documents, drawings and other design inputs will be handled in accordance with Rev- 15'f the EDS Quality .

Assurance Contxol Manual- A memorandum will, be submitted by the appropriate project, personnel and approved by the Project Engineer indicating that verification has been conducted to ensure proper entry of all documentation into the QA File.

Task No. 3 Xdentification of Control Systems not required for safety.

Objective: To identify those Control Systems not required for safety whose failure or malfunction could impact on plant safety.

Xn order to identify all Control Systems which impact on plant safety, it is first necessaxy to identify those plant safety functions that are required to be met during the modes of plant operation addressed in Chapter 15 of the SSES FSAR. The modes of plant operation are as follows:

a. Reactor Shutdown/Head off
b. Reactor Not Shutdown/Head off

EDS NUCLEAR lNC.

'.'TITLF'ontrol Systems Power Supply and Sensor Malfunction Study

>>c>>gr ~>>>>>>w>~>> i~>>~qqp..>>>>~>c...w>> .~ epr~~~ ~~w'w~~~~~~. ~yn>>m~,. iy+>> ~g~~~y>> vms rgb,>>wm>>~ipse~ >>,*

NUMBER. REVlStON'. PAGE 7

OF c~ Reactor Shutdown/Head on

d. Reactor Not Shutdown/Head on Review Chapter 15 of the SSES FSAR and generate the list of the Safety Functions required by Chapter 1S to support those modes of plant operation. Document the Plant Operating Modes, Safety Functions, and FSAR References on Figure l.

2~ Transfer the plant modes of operation and associated supporting safety functions to the Contxol System Identification Diagram (CSZD), as per Figure 2. These diagrams are designed to graphically present the following:

lo Plant Operating Modes 2~ Plant Safety Functions 3~ Control" Systems 4>> Power Supplies and Sensors (to be added during Task 4)

The detailed procedure for the preparation of the CSID's is contained in Appendix B- This procedure should be used for this task and all future tasks involving CSID input.

3~ Once the key plant safety functions axe identified, identify those control systems not required for safety and align them with their respective safety functions. Since these contxol systems taken individually axe, by definition, not safety-related, it will be necessaxy to determine each of these contxol systems affect each of the if and how aforementioned safety functions. Zt is imperative that each of these control systems be carefully and completely analyzed, since it is quite possible that indirect effects on safety exist which may not have been previously addressed in the FSAR-Transfer the control systems infoxmation to the CSIDs as per Figure 2. Annotate each contzol system on the CSID to show

'its relationship to each of. its related safety functions, respectively.

Zn order to ensuze that the control systems have been properly identified and matched with their respective safety function(s), the Project Engr'.neer will conduct an independent check for each plant safety function.

EDS NUCl EAR INC.

v,<<*  % ~ <<<<'>> ~ <<

'<<\

'a ~ <<<< ~ ', ',<<<<, ~ ' <<'A. / "*~ v<<w,.

~ a ~<<,' w<<<<,+ ~

<<(>>'ontrol Systems Power Supply and Sensor Malfuncti,on Study

  • ~<< ~ ' I <<<<>> -<<s' rt NUMBER: REVISION: PAGE sOF 19 Pleo PP4~P1 Task No. 4 Identification of Power Supplies and Sensors Objective: To identify all power supplies and sensors which provide power or signals to those control systems not recpxired for safety.
1. For the purposes of this task and all future tasks, the following terms are defined:

Control System Sensor- a device which responds to changes in a plant variable and converts the measured process 1

variable into an electric or pneumatic signal.

Control System Power Supply- the primary level electrical power source (i.e.; major instrumentation bus), AC or DC, to a'canponent or sub-system of a control system.

Cascading Power Supply Effect - the potential failure of higher level power supplies, up to and includincr the 120 VAC or 125 VDC bus~

originating from the Control System Power Supply 2~ Analyze each control system identified in Task No. 3 to determine every power supply and sensor that provides power and signals, respectively, to that control system. This task will involve extensive use of PAID's, Electrical One Line and Elementary Diagrams, Functional Control Diagrams, Instrument Index and Loop Diagrams. If the control system being analyzed is made up of sub"systems or components, it will be necessary to ascertain powex supply and sensor information for each of these items.

3~ Those cases which involve electromechanical sensors that are part of a control system will be handled by treating the mechanical and electrical sub~omponents separately. List the mechanical subwomponents as a sensor for that control system. R addition, list the power supply for the electrical part of the component as one of power supplies to that control system.

EDS NUCLEAR INC.

I W ~, li Al 4 ~0 y 8 HA 0 41 TITLE: Contxol Systems Power Supply and Sensor Malfunction Study NUMBER: 0160-004~01 REVISION: PAGE 9 OF 4~ In the identification of power supplies for each control system, it will be necessary to examine the cascading effect of higher level power supplies. Specifically< subsequent to identifying the primary level power supply, identify all successive higher level power supplies up to and including the 480V bus. The cascading effect is shown in Figure 3.

5. Each power supply and sensor identified in the task must be then added to CSID's. Note that for those contxol systems that contain sub"systems or components, the power supply and sensor information is added below each sub-system or component, respectively. Cascading gower supplies will be handled as per Figure 2. Each of the higher level power supplies will include a letter in addition to the number (i.e t "6a, 6b") ~

6~ At this point, the CSID's will be complete. They now contain the following infoxmation:

lo Plant Operating Modes 2~ Plant Saf ety Functions 3~ Control systems not required for safety

4. Control systems - Sub-systems/Components (if applicable) 5~ Power supplies and sensors The Project Engineer will review all CSID's to ensure they are complete and properly formatted.

Task No. 5 Identify Power Supply and Sensor Commonality Objective: To determine which power supplies and sensors provide power and signals to more than one contxol system.

Power supply and sensor commonality is to be determined through the examination of'the CSID's. Commonality, fox the puzpose of this project, is defined as any power supply or sensor which provides power or signals to more than one control system for any safety function(s) in a particular plant operating mode 2~ Generate a Commonality Diagram (CD) for each common power supply and sensor detexmined through examination of the CSID's See Appendix C for the detailed procedure for CD Preparation.

EOS NUCLEAR INC.

AJy " >gqp i s. " 1 s t <<4t vr 8' 8'w<< >> "I 1<< ~ tea ~+ ~p', ~ <<<<u <<'<<P l, ~ 4 '

<< i A~ ~ < ~

Control Systems Power Supply and Sensor Malfunction Study NUMSER: 0160-004& 01 REVISION: 2 PAGE 10OF 19 Each diagram will start with the common power supply or sensor then branch off to the affected control'ystems. Each control system shown on the Commonality Diagram must be annotated to show which safety function(s) it supports- Figure 4 is an example of a Commonality Diagram.

3. An independent check will be conducted on each plant operating mode in order to ensure that all common power supplies and sensors have been determined.

Task No. 6 Perform Failure Modes and Effects Analysis Objective: To analyze the effects of power supply and sensor failures or malfunctions on control systems and plant performance.

In order to completely analyze the effects of the failure or malfunction of those common power supplies and sensors, a Failure Modes and Effects Analysis (FLEA) will be conducted on each common power supply and sensor determined in Task No. 5.

The following information, germane to the effect of the failure or malfunction on the control system and plant perfonnance, must be included:

a~ Name of power supply or sensor being analyzed bi Failure mode(s)

C~ Symptoms and local effects dI Inherent Compensating Provisions

e. Effect(s) upon control systems/plant performance The detailed procedure to be used in FMEA preparation is contained in Appendix D.

20 The. information required to generate the FMEA shall be obtained by conducting a de'tailed systems analysis on each control system and its constituent parts.

3. The Failure Modes and Effects Analysis will be presented in tabular form as per Figure 5.

Task No. 7 Determination of the Impact of Malfunctions on Plant Safetyo Objective: To determine the impact on plant safety of the simultaneous malfunction of control systems resulting from common power supply or sensor failure or malf unction.

EDS NUCLEAR INC.

~ a," ~ s% s' ~ '

TITLE: Control Systems Power Supply and Sensor Malfunction Study WA 'W~.' " s '

0160-004M Ol REVISION: 'UMBER:

PAGE 11OF 19

1. The effects on plant performance and control system operation as determined through the Failure Modes and Effects Analysis is to be utilized in the determination of the impact on plant safety resulting from common power supply and sensor failure or malfunction. The impact of each failure on plant safety will be determined as follows:

a~ Conduct a functional safety analysis on each of the failure effects noted in the FMEA. The result of this analysis will be a list of plant safety-related conditions associated with each multiple control system failure.

b Compare the resulting plant saf etywelated conditions with those safety responses previously documented in Chapter 15 of the SSES FSAR A determination must be made to ensure that these parameters are bounded by the analyses in the Chapter 15.

C~ Zn addition, analyze each plant safety-related condition to verify that in addition to being bounded by Chapter 15 analyses, the conditions would not require action or response beyond the capabilities of operators or safety systems ~

1. To accomplish the operator portion of this task, conduct a comparison between the operator action required to mitigate the resulting abnormal conditions and the operator actions delineated in the SSES FSAR Chapter 15.
2. To accomplish the safety system portion of this task, utilize the safety analysis described in Chapter 15

~

and the information from the safety system detailed descriptions to veiify that'he resulting conditions are adequately covered by the safety system capabilities.

2~ Documentation of the analyses performed in Item 1 should be accomplished as follows:

ao Chapter 15 comparitive analyses - document in tabular form as shown on Figure 6. Items to be included are:

1. Plant condition(s) resulting from common power supply or sensor failure.

EDS NUGLEAR1NG;

~ Il 0 ~, ~ II 0 4 1, "tA, . P t A ..

  • 4 ',t " AVOW ~ t 4 ' t) L~ if 4, WI ~ I 8. ~~ I Control Systems Power Supply and Sensor Malfunction Study g 0 ~ f ~ ~ ~

NUMBER: p16p-pp4~pl REVISlON'AGE '12OF ]9 2 Corresponding Chapter 15 responses

b. Operator ox Safety System capabilities - document in tabular form as shown in Figure 7. Items to be identified are:
1. Plant condition(s) resulting from common power supply or sensor failure.

2~ Corresponding operator responses as per the appropriate procedure.

3~ Corresponding Safety System responses as per the specific section of the FSAR.

c~ For Final Report purposes, present the analyses shown on Figures 6 and 7 in paragraph form in the main body of the report Task No 8 Recommendation for Modification or Reanalysis Objective: To identify those control systems failuxes not bounded by Chapter 15 analysis and to recommend further action.

l. In the event that, in the perfoxmance of Task No. 7, detexmined, through analysis, that the resulting plant it is safety-related conditions are not bounded by Chapter 15 analyses, recommendations are to be made as delineated below:

a~ Plant Modifications - Conduct analysis of plant conditions resulting from the control system failures and provide recommendations for plant modifications to resolve this problem. Possible modifications that aze to be provided in this task include:

\

1 Modify or provide separate power supply 2~ Modify or add anothex sensor 3~ Md channel sepaxation

4. Md oz delete a component 5 ~ Provide for automatic bus transfer b Chapter 15 Recommendations for Reanalysis - Conduct a review of plant conditions resulting from the control system failures and provide recommendations for

'reanalysis of Chapter 15 to properly bound those plant conditions.

EDS NUCLEAR INC.

TITI-+Control Systems Power Supply and Sensor MaLfunction Study NUMSER: 0160-004-001 REVISION: PAGE 13 OF 19

2. Document the results of Task No. 8 as follows:
a. Document th'e plant safety-xelated condition and its corresponding recommendation for plant modification or Chapter 15 zeanalysis in tabular foxm as per Figure 8-
b. For Final Report purposes, present the analyses shown on Figure 8 in paragraph form in the main body of the report.

Task No. 9 Report Submittal Objective: To document all methods, assumptions, findings, conclusions and recommendations.

1. Prepare a pzeliminaxy report of the results of this study for submittal to PPGL as per the HRC requirements levied in the

~

April, 1981 Safety Evaluation Report. This report will include all pertinent information and data and will document all methods, assumptions, analyses, results, conclusions and recommendations. PAL will be requested to review this preliminary report and to comment on its content.

2 Subsequent to PP&L's xeview of the preliminary report, incorporate all comments agreed upon by PPGL and EDS in a Final Report.

iDS NUCLEAR INC.

TITL~.Control Systems Power Supply and Sensor Malfunction Study NUMSER: 0160-004& 01 REVISION: PAGE 14 OF 19 3 0 QUALITY ASSURANCE

l. Engineering work associated with each, of the tasks in Section 2.0 will be perfozmed in accordance with Revision 15 of the EDS Quality Assurance Manual.
2. The checking criteria to be used for this work is itemized below. This criteria is in addition to those items set forth in Attachment A of EDS QAP 3 6 of Rev. 15 to the QA Manual.

ao Control System Xdentification Diagrams it clearlycontain Does each CSID and is only one identified2 Plant Operating Mode 2~ Aze the safety functions properly identified under the Plant Operating Mode2 3~ Are the control systems recgxired for each safety function properly identified2 Does each contz'ol system have the appropriate annotation linking function2 it to its respective safety 5~ Are components and sub-systems pzoperly indicated below each control system (where applicable)?,

Are power supplies and sensors clearly identified for each control system?

7~ Has the diagram revision information been properly entered2 bo Commonality Diagrams Does the Commonality Diagram reflect only one power supply or sensor2 Zs it properly identified2 2~ Are the control systems common to that power supply or sensor properly identified and annotated to show plant mode and safety function affected by this commonality?

3~ Are components and sub-systems related to the control system propez'ly identified?

4~ Has the diagram revision information been properly identified?

EDS NUCt.EAR lNC.

~ I C '4 ~ 1 ~ W V% <i S eKll, 1~hL <l "~ ~ ~ ', il ~ <

V k c s ~, 1 ~ '4 TlTL+Control Systems Supply and Sensor Malfunction Study

~ ",-', Power 8 , / \, JP 6 4,, 'I tP ~ I' ~ 0 q ~, \ +I. 5 ~

NUM8ER: 0160-004-001 REVISlON: PAGE 1S OF 19 APPENDIX A FIGURES

FZGURE 1 PLANT OPERATZNG MODE SAFETY FUNCTZONS Descry.ption Re ferences

coulee ~STz iDEeyc]coypu D>A/-JAN ceo POHfEQ 0PEQA TIE/

PLANT /CAAIT PIAAIT 5/AFhfY 54FETV 5AFETY SAPETY FuuCT/OAI FUNC Tlali PUA/cTIOAI FUAICTIOAI I 4 CouTROI. CATA?OE 5AFETY dVOTEAA ~TEQ A'/TERIA A

TAoe9

'ADk'4i coMIouEA?T Co/I?POAIEuT I

R7H(EA? 5UPP/.V' .R)WER OUPPLY 5 5EA/5OR 9 4<

4'EA/ooR

&WEQ 5UPPI.V 'Z 5E'A/5' powER ouppcT cia POWER 5UPPLV 9 5EA/5DR 5 0 POWER OU~Y bb 5EAIOOQ 5 POWER PUPPY 4 5EA/A7R 4+ power 5upp/f 7 I

O'OrHhlOAI 5EA/50R5 S/GUET 2'

FIGURE 3 - Cascadin Power Su 1 bus iAi 480v (1B210)

MCC 1B217 25hp Motor Flywheel Gen.

RPS Pwr. Dist Pnl. t 4t Bus 120v Rad. Monitoring St. Line 'A'

9lkfPC Ir/Eo CO/'Yfkfou4L II'Y'IAGZ48/f co4htoQ Powys @PRAY GZ

~

~~8/F02 CGWTw<4

~ v'=-=-.M

Pl4 5 ~ .

racl lllyr talLURS HOOSS ASD SfySCTS AllALySlS Slloet of Ooctotr Job Mo Coosou pouor Supply oC Olllloorl CS inc Dater ROVe

" Cllecko4 byr Oat ~ !

control syotou Affecce4r CO Dater Sysptoss 4a4 Local Sussaryr Suas4ryr Co&pollent llaao l el lure Sffacts laoludlag Syston lnboceat Sffect Upon Sffoct Upon an4 llIIaber Ho4O Oepea4eat tallucos Cospenslt lag prov la loa contcol Systen l'lant porfocaanco

Pg FIGU Plant Conditions - Power Supply Plant Response-or Sensor Failure/Malfunction Cha ter 15 Anal sis

0 li'IGOBB 7 Plant Conditions Power Supply Safety System or Sensor Fai.lure/Halfunction 0 erator Res onse Res onse Per FSi~A

FIGU Plant Conditions;Not Covered b Cha ter 15 Anal sis 'ecommendation

FIGURE 9 PROJECT INST/KCTIONS CHANGE NOTICE LOG CLIFF: PROJECT INSTRUCTION NO.:

JOB NO.: REVISION NO.:

'ICN 0 SiJBJECI'ND/OR DESCRIPTION

FIGURE 10 8Idlsw~i AUcIBGI FILE:

( PROJECT INSTRUCTION CHANGE NOTICE COPY:

PICN No.

PROJECT:

CLIENT: PROJECT INSTRUCTION NO.:

JOB NO.: REVISION NO.:

Prepared By: Date Approved By,: Date Concurrence By: Date Page i of

EOS NUCLEAR INC.

t 4 4 I 4f 4>> 441 I J,,1A P~+ 6 44@, ~64, 0 ~ A 'J ~ a~A TITLE: Control Systems Power Supply and Sensor Malfunction Study NUMSER: 0160-O04-Ool REVISION., 2 PAGE 16 OF 19 APPENDIX B CSID PREPARATION Using the format shown in Figure 2, complete the CSID as follows:

Enter the plant operating mode. For the purposes of this project, there are four modes that will be analyzed. A CSID will be prepared for each mode.

20 Enter the plant safety functions recgxired to support each plant operating mode.

3~ Enter the control systems recgxired to support each of the respective safety functions. Note that a control system may appear more than once on each CSID depending upon the number of safety functions it supports.

a, Annotation of contxol system relationship to each safety function should be located adjacent to the control system box e 4~ Enter the power supplies and/or sensors associated with each control system as shown in Figure 2. I a~ If components or sub-systems for each control system are recpxired, enter them in separate boxes below the control system box. Then add the powex supply and sensor information below the component or sub-system.

5. Any revision to the diagram should be noted on the diagram itself. Revisions should be handled in accordance with EDS QAP 3+2 '

EDS NUCLEAR INC, T~Tt-~ Control Systems Power Supply and Sensor Malfunction Study NUMBER: 0160-004-001 REVISION'AGE 17 OF lg APPENDIX C COMMONALITY DIAGRAM PREPARATION Using the format shown in Figure 4, complete the Commonality Diagram as follows:

l. Enter the common power supply or sensor.

2~ Enter the control systems supported by that common power supply or sensor.

Annotate the control system entry to indicate which plant mode and safety function(s) are related to that control systeme

b. Enter control system components and/or subwomponents below each control system entry where applicable.

3~ Any revision to the diagram should be noted on the diagram itself. Revisions should be handled in accordance with EDS QAP 3e2 ~

EDS NUCLEAR INC.

TlTLR Contml Systems Power Supply and Sensor Malfunction Study NUMBER: ol60-O04-Ool REVlSlON: PAGE ls OF le AP~-IDXX '3 FEEL PREPARATION Using the format shown in- Pigu e 5+ complete the cCA as follows:

Enter the title block information as per H.cure 5. Por system, enter control systems affected: for subsystem, enter the sub~stem i apol'cables for ecuipment< enter the power supply or sensor being analyzed.

2+ Enter the t'tie of. the failed component or subsystem "Name" columns 3 Enter the tyae of failuze in the "Eailuze Node" column.

Enter the symptoms associated with the ailuze as to ~e control it relates systems affec"ed in the "Symptoms and LocaL Effects" column 5o Briefly describe the plant response that would compensate fo this failure. Enter this in the "Znherent Compensating Pro~ious" column.

6e >m the "~feet" columns describe in detail the effects upon the control systems and plant performance.

EOS NUCLEAR INC.

~ r 6, gA ~ r ~ r ~ r ~ rrr rA

~,'rrr'lTLE'.

Control Systems Power Supply and Sensor Malfunction Study

~ '

r r '

r r ~ ~ ~ r g ' ' r 9, r>>, v "t r ~ 'r '

r NUMEIER: 0160-004-001 REVISION: PAGE 19OF 19 APPENDIX E CHANGES TO THE PROJECT INSTRUCTIONS Change to the Project Instructions are to be handled as follows:

1. Changes to the Project Instructions must be properly controlled.

Minor changes shall be controlled by the Pxoject Instruction Change Notice Log (Figure 9) and the Project Instruction Change Notice (PICN) (Figure 10). Major changes shall be controlled through revisions. Each new revision shall incorporate the PICN's issued since the last revision. Both PICN's and revisions to Project Instructions must be prepared, approved and concurxed with the level of personnel commensurate with those that originally signed the Project Instructions 2 The PICN Log in the Project QA File (with the Project Instructions) shall be the master copy and kept current by the Project Engineer.

PICN's shall be distributed to all personnel that xeceive copies of the Project Instructions.

O