Safety and Security Management for NPP I&C Systems

Introduction

International and national standards introduce requirements to safety management of Instrumentation and Control (I&C) systems. Taking into the account increasing role of information security in nuclear safety assurance we have to consider also requirements to security management. So it makes a sense to discuss safety and security management as a common process implemented for I&C systems.

The standards IEC 61508 “Functional safety of electrical/ electronic/ programmable electronic safety-related systems” has been firstly issued in 1990s. It collected the existing experience of risk-oriented approach in safety-critical industries. The second edition has been issued in 2010. The IEC 61508 includes seven parts. The main idea of the IEC 61508 is that I&C system has to produce risk depending on potential damage for people and environment. The IEC 61508 is an umbrella standard for different industrial brunches including nuclear. In the nuclear industry we have the standard IEC 61513 “Nuclear Power Plants – Instrumentation and Control important to safety – General requirements for systems” which complies with the top level requirements of the IEC. Some nuclear authorities consider the IEC 61508 as an important standard which is applicable in many issues for I&C systems. In Canada compliance with the IEC 61508 is mandatory for I&C systems of Nuclear Power Plants. The IEC 61508 introduces the following groups of requirements:

• •

  Requirements to safety management (this set of requirements can be considered as the umbrella part of safety regulations applicable also for the nuclear industry).

• •

  Requirements to safety life cycle.

• •

  Requirements to random (hardware) failures avoidance.

• •

  Requirements to system and software failures avoidance.

• •

  Requirements to safety assessment.

Background

Researches in safety and security management area always have had extremely practical focus directed to achievement of successful licensing or certification. This is a reason why consulting companies pay attention to this issue. Smith and Simpson, 2004 represented a concept and interpretation of IEC 61508 requirements. Medoff and Faller, 2010 provided a detailed description for safety management processes including recommendation concerning compliance with IEC 61508 requirements and templates of managerial plans. Sklyar (2016); Sklyar and Kharchenko (2017) harmonized safety management and security management process provided a common licensing framework.

Based on the results of the above works, the aim of the chapter is to give details of safety and security management process based on the IEC 61508 requirements and applicable for Nuclear Power Plants Instrumentation and Control systems. The main contribution of this study comprises a set of detailed contents for safety and security management.