Verification of a primary-to-secondary leaking safety procedure in a nuclear power plant using coloured Petri nets

This paper deals with formal and simulation-based verification methods of a PRImary-to-SEcondary leaking (abbreviated as PRISE) safety procedure. The PRISE safety procedure controls the draining of the contaminated water in a faulty steam generator when a non-compensable leaking from the primary to the secondary circuit occurs. Because of the discrete nature of the verification, a Coloured Petri Net (CPN) representation is proposed for both the procedure and the plant model. We have proved by using a non-model-based strategy that the PRISE safety procedure is safe, there are no dead markings in the state space, and all transitions are live; being either impartial or fair. Further analysis results have been obtained using a model-based verification approach. We created a simple, low dimensional, nonlinear dynamic model of the primary circuit in a VVER-type pressurized water nuclear power plant for the purpose of the model-based verification. This is in contrast to the widely used safety analysis that requires an accurate detailed model. Our model also describes the relevant safety procedures, as well as all of the major leaking-type faults. We propose a novel method to transform this model to a CPN form by discretization. The composed plant and PRISE safety procedure system has also been analysed by simulation using CPN analysis tools. We found by the model-based analysis-using both single and multiple faults-that the PRISE safety procedure initiates the draining when the PRISE event occurs, and no false alarm will be initiated. © 2008 Elsevier Ltd. All rights reserved.

[1]  Poong Hyun Seong,et al.  Development of automated operating procedure system using fuzzy colored petri nets for nuclear power plants , 2004 .

[2]  Andrej Prošek,et al.  Quantitative assessment of MCP trip transient in a VVER , 2004 .

[3]  Jose Maria Izquierdo-Rocha,et al.  Application of the integrated safety assessment methodology to the emergency procedures of a SGTR of a PWR , 1994 .

[4]  Kurt Jensen,et al.  Coloured Petri nets (2nd ed.): basic concepts, analysis methods and practical use: volume 1 , 1996 .

[5]  Poong-Hyun Seong,et al.  Development of a safety critical software requirements verification method with combined CPN and PVS: a nuclear power plant protection system application , 2003, Reliab. Eng. Syst. Saf..

[6]  Kurt Jensen Coloured Petri Nets , 1992, EATCS Monographs in Theoretical Computer Science.

[7]  Emilia Villani,et al.  Hybrid stochastic approach for the modelling and analysis of fire safety systems , 2006 .

[8]  Monika Heiner,et al.  VERIFICATION AND OPTIMIZATION OF CONTROL PROGRAMS BY PETRI NETS WITHOUT STATE EXPLOSION 1) , 1997 .

[9]  Günther Kessler,et al.  Nuclear Fission Reactors , 1983 .

[10]  Poong-Hyun Seong,et al.  A method for identifying instrument faults in nuclear power plants possibly leading to wrong situation assessment , 2008, Reliab. Eng. Syst. Saf..

[11]  F. D'Auria,et al.  Methodology for the reliability evaluation of a passive system and its integration into a Probabilistic Safety Assessment , 2005 .

[12]  Francesco Saverio D'Auria,et al.  Overview of accident analysis in nuclear research reactors , 2008 .

[13]  Poong Hyun Seong,et al.  An integrated knowledge base development tool for knowledge acquisition and verification for NPP dynamic alarm processing systems , 2002 .

[14]  Arjan van der Schaft,et al.  An Introduction to Hybrid Dynamical Systems, Springer Lecture Notes in Control and Information Sciences 251 , 1999 .

[15]  Yassin A. Hassan,et al.  Implementation of a non-condensable model in relap5/mod3 , 1996 .

[16]  Yongsoo Kim,et al.  Sweepout model implementation in RELAP5/MOD3.3 to improve RCS coolant inventory calculation during a LBLOCA , 2006 .

[17]  Gábor Szederkényi,et al.  A simple dynamic model of the primary circuit in VVER plants for controller design purposes , 2007 .

[18]  Soeren Kliem,et al.  Validation of coupled neutron kinetic/thermal-hydraulic codes. Part 2: Analysis of a VVER-440 transient (Loviisa-1) , 2002 .

[19]  Thomas Menzel,et al.  Methods and tools to the verification of safety-related control software , 2000, Smc 2000 conference proceedings. 2000 ieee international conference on systems, man and cybernetics. 'cybernetics evolving to systems, humans, organizations, and their complex interactions' (cat. no.0.

[20]  Hanno Wupper,et al.  What is the method in applying formal methods to PLC applications , 2000 .

[21]  Miklós Gerzson,et al.  Analysis of controlled technological systems using high level petri nets , 1995 .

[22]  Lichtenberg Gerwald,et al.  Using discrete invariants for fault detection of hybrid systems , 2004 .

[23]  Jaewhan Kim,et al.  The MDTA-based method for assessing diagnosis failures and their risk impacts in nuclear power plants , 2008, Reliab. Eng. Syst. Saf..

[24]  Hee Cheon No,et al.  Analysis of experiments for in-tube steam condensation in the presence of noncondensable gases at a low pressure using the RELAP5/MOD3.2 code modified with a non-iterative condensation model , 2003 .

[25]  Lars Michael Kristensen,et al.  Design/CPN - A Computer Tool for Coloured Petri Nets , 1997 .

[26]  Soeren Kliem,et al.  Validation of coupled neutron kinetic/thermal–hydraulic codes. Part 1: Analysis of a VVER-1000 transient (Balakovo-4) , 2001 .

[27]  Francesco Saverio D'Auria,et al.  Use of coupled code technique for Best Estimate safety analysis of nuclear power plants , 2007 .

[28]  Ronaldo C. Borges POST TEST SIMULATION AND ACCURACY QUANTIFICATION OF LOBI TEST A 193 , .

[29]  Hiroshige Kumamaru,et al.  The effects of break location on PWR small break LOCA: Experimental study at the ROSA-IV LSTF , 1990 .

[30]  Grzegorz Rozenberg,et al.  High-level Petri Nets: Theory And Application , 1991 .

[31]  Christos G. Cassandras,et al.  Introduction to Discrete Event Systems , 1999, The Kluwer International Series on Discrete Event Dynamic Systems.

[32]  Georg Frey,et al.  Formalization of existing PLC Programs: A Survey , 2003 .

[33]  Jean-François Aubry,et al.  An aggregation method of Markov graphs for the reliability analysis of hybrid systems , 2006, Reliab. Eng. Syst. Saf..

[34]  Chunkuan Shih,et al.  Model extension and improvement for simulator-based software safety analysis , 2007 .

[35]  Lothar Litz,et al.  Formal methods in PLC programming , 2000, Smc 2000 conference proceedings. 2000 ieee international conference on systems, man and cybernetics. 'cybernetics evolving to systems, humans, organizations, and their complex interactions' (cat. no.0.

[36]  Kurt Jensen,et al.  Coloured Petri Nets: Basic Concepts, Analysis Methods and Practical Use. Vol. 2, Analysis Methods , 1992 .

[37]  Yong-Hak Kim,et al.  Containment pressure and temperature envelopes for a CANDU reactor equipment environmental qualification , 2006 .

[38]  Francesco Saverio D'Auria,et al.  RELAP5/MOD3.2 POST TEST SIMULATION AND ACCURACY QUANTIFICATION OF LOBI TEST A1-93 , 2000 .

[39]  Celso Marcelo Franklin Lapa,et al.  Hazard and operability study using approximate reasoning in light-water reactors passive systems , 2006 .