1、BRITISH STANDARDBS EN 62340:2010Nuclear power plants Instrumentation and control systems important to safety Requirements for coping with common cause failure (CCF) ICS 27.120.20g49g50g3g38g50g51g60g44g49g42g3g58g44g55g43g50g56g55g3g37g54g44g3g51g40g53g48g44g54g54g44g50g49g3g40g59g38g40g51g55g3g36g5
2、4g3g51g40g53g48g44g55g55g40g39g3g37g60g3g38g50g51g60g53g44g42g43g55g3g47g36g58National forewordThis British Standard is the UK implementation of EN 62340:2010. It is identical to IEC 62340:2007. It supersedes BS IEC 62340:2007 which is withdrawn.The UK participation in its preparation was entrusted
3、to Technical Committee NCE/8, Reactor instrumentation.A list of organizations represented on this committee can be obtained on request to its secretary.This publication does not purport to include all the necessary provisions of a contract. Users are responsible for its correct application.Complianc
4、e with a British Standard cannot confer immunity from legal obligations.BS EN 62340:2010This British Standard was published under the authority of the Standards Policy and Strategy Committee on 31 March 2008 BSI 2010Amendments/corrigenda issued since publicationDate Comments 31 July 2010 This corrig
5、endum renumbers BS IEC 62340:2007 as BS EN 62340:2010ISBN 978 0 580 68114 1EUROPEAN STANDARD EN 62340 NORME EUROPENNE EUROPISCHE NORM May 2010 CENELEC European Committee for Electrotechnical Standardization Comit Europen de Normalisation Electrotechnique Europisches Komitee fr Elektrotechnische Norm
6、ung Management Centre: Avenue Marnix 17, B - 1000 Brussels 2010 CENELEC - All rights of exploitation in any form and by any means reserved worldwide for CENELEC members. Ref. No. EN 62340:2010 E ICS 27.120.20 English version Nuclear power plants - Instrumentation and control systems important to saf
7、ety - Requirements for coping with Common Cause Failure (CCF) (IEC 62340:2007) Centrales nuclaires de puissance - Systmes dinstrumentation et de contrle commande importants pour la sret - Exigences permettant de faire face aux Dfaillances de Cause Commune (DCC) (CEI 62340:2007) Kernkraftwerke - Leit
8、technische Systeme mit sicherheitstechnischer Bedeutung - Anforderungen zur Beherrschung von Versagen aufgrund gemeinsamer Ursache (IEC 62340:2007) This European Standard was approved by CENELEC on 2010-05-01. CENELEC members are bound to comply with the CEN/CENELEC Internal Regulations which stipul
9、ate the conditions for giving this European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the Central Secretariat or to any CENELEC member. This European Standard
10、 exists in three official versions (English, French, German). A version in any other language made by translation under the responsibility of a CENELEC member into its own language and notified to the Central Secretariat has the same status as the official versions. CENELEC members are the national
11、electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, S
12、weden, Switzerland and the United Kingdom. Foreword The text of the International Standard IEC 62340:2007, prepared by SC 45A, Instrumentation and control of nuclear facilities, of IEC TC 45, Nuclear instrumentation, was submitted to the CENELEC formal vote for acceptance as a European Standard and
13、was approved by CENELEC as EN 62340 on 2010-05-01. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. CEN and CENELEC shall not be held responsible for identifying any or all such patent rights. The following dates were fixed: latest
14、 date by which the EN has to be implemented at national level by publication of an identical national standard or by endorsement (dop) 2011-05-01 latest date by which the national standards conflicting with the EN have to be withdrawn (dow) 2013-05-01 Annex ZA has been added by CENELEC. As stated in
15、 the nuclear safety Directive 2009/71/EURATOM, Chapter 1, Article 2, item 2, Member States are not prevented from taking more stringent safety measures in the subject-matter covered by the Directive, in compliance with Community law. In a similar manner, this European Standard does not prevent Membe
16、r States from taking more stringent nuclear safety measures in the subject-matter covered by this European Standard.” _ Endorsement notice The text of the International Standard IEC 62340:2007 was approved by CENELEC as a European Standard without any modification. BS EN 62340:2010EN 62340:2010 (E)
17、2 CONTENTS INTRODUCTION.4 1 Scope.7 2 Normative references .8 3 Terms and definitions .8 4 Abbreviations .12 5 Conditions and strategy to cope with CCF 13 5.1 General .13 5.2 Characteristics of CCF 13 5.3 Principal mechanisms for CCF of digital I b) to additionally require the implementation of inde
18、pendent I c) to give an overview of the complete scope of requirements relevant to CCF, but not to overlap with fields already addressed in other standards. These are referenced. This standard emphasises the need for the complete and precise specification of the safety functions, based on the analys
19、is of design basis accidents and consideration of the main plant safety goals. This specification is the pre-requisite for generating a comprehensive set of detailed requirements for the design of I b) between I c) between redundant channels of the same I b) propagation of physical effects in the ha
20、rdware (e.g. high voltages); and c) avoidance of specific faults and vulnerabilities within the I b) the ability of the systems to perform their functions is unaffected by the presence of the effects resulting from the postulated initiating event for which they are required to function; c) adequate
21、robustness against common external influences (e.g. from earthquake and EMI) is assured by the design of the systems modified definition of “independent equipment” from IAEA Safety Glossary, Ed. 2.0, 2006 NOTE Means to achieve independence by the design are electrical isolation, physical separation,
22、 communications independence and freedom of interference from the process to be controlled. 3.13 input signal transient time behaviour of all process signals which are fed into the I the system is caused to stop its processing, so no response can be given. 5.4 Conditions to defend against CCF of ind
23、ividual I b) latent faults which are introduced during maintenance because the possibility for analysing and testing modifications may be limited under plant constraints (e.g. modification of set-points, use of revised versions of spare-parts or the up-grading of I and BS EN 62340:2010EN 62340:2010
24、(E) 14 c) the triggering of latent faults during maintenance activities by causing partly specific system states or partly invalid data which do not represent the actual plant status. Depending on the I e) for digital technology the failure propagation via high voltages can be excluded if fibre opti
25、cs are applied but specific means are required to reduce susceptibilities to failure propagation from erroneous or missing data. This standard gives guidance for reducing the possibility of the existence of mechanisms that could support the triggering of postulated types of latent design faults to c
26、ause CCF during transients (see Clauses 7, 8 and 9). To reduce the likelihood that latent design faults may remain in the final I the exclusion of latent faults may be possible for very small and simple software modules so that a fault analysis and adequate testing can be performed. BS EN 62340:2010
27、EN 62340:2010 (E) 18 7.3.2 Independent I invariance of processing load and communication load; avoidance of interrupts triggered by process data (for the generally restricted use of interrupts, see Clause B.2 of IEC 60880). 8.2 The (application) software shall be designed to be tolerant of invalid i
28、nput signals, singly or in groups or due to spurious short-term transients on the input signals, such that safe action is ensured but spurious actuations are avoided. 8.3 Invalid or faulty input signals shall be identified on-line. If faulty signals are identified and processed by comparison of redu
29、ndant information, then the dependencies thus introduced between redundant sub-systems shall be analysed for CCF possibilities. 8.4 If an I a safety guide - - IAEA Safety Glossary 2007 Terminology used in nuclear safety and radiation protection - - BS EN 62340:2010EN 62340:2010 (E) 23 BSI GroupHeadq
30、uarters 389 Chiswick High Road, London, W4 4AL, UK Tel +44 (0)20 8996 9001 Fax +44 (0)20 8996 7001 standardsBSI - British Standards InstitutionBSI is the independent national body responsible for preparing British Standards. It presents the UK view on standards in Europe and at the international le
31、vel. It is incorporated by Royal Charter.RevisionsBritish Standards are updated by amendment or revision. Users of British Standards should make sure that they possess the latest amendments or editions.It is the constant aim of BSI to improve the quality of our products and services. We would be gra
32、teful if anyone finding an inaccuracy or ambiguity while using this British Standard would inform the Secretary of the technical committee responsible, the identity of which can be found on the inside front cover. Tel: +44 (0)20 8996 9000. Fax: +44 (0)20 8996 7400.BSI offers members an individual up
33、dating service called PLUS which ensures that subscribers automatically receive the latest editions of standards.Buying standardsOrders for all BSI, international and foreign standards publications should be addressed to Customer Services. Tel: +44 (0)20 8996 9001. Fax: +44 (0)20 8996 7001 Email: Y
34、ou may also buy directly using a debit/credit card from the BSI Shop on the Website http:/ response to orders for international standards, it is BSI policy to supply the BSI implementation of those that have been published as British Standards, unless otherwise requested.Information on standardsBSI
35、provides a wide range of information on national, European and international standards through its Library and its Technical Help to Exporters Service. Various BSI electronic information services are also available which give details on all its products and services. Contact Information Centre. Tel:
36、 +44 (0)20 8996 7111 Fax: +44 (0)20 8996 7048 Email: Subscribing members of BSI are kept up to date with standards developments and receive substantial discounts on the purchase price of standards. For details of these and other benefits contact Membership Administration. Tel: +44 (0)20 8996 7002 Fa
37、x: +44 (0)20 8996 7001 Email: Information regarding online access to British Standards via British Standards Online can be found at http:/ information about BSI is available on the BSI website at http:/ CopyrightCopyright subsists in all BSI publications. BSI also holds the copyright, in the UK, of
38、the publications of the international standardization bodies. Except as permitted under the Copyright, Designs and Patents Act 1988 no extract may be reproduced, stored in a retrieval system or transmitted in any form or by any means electronic, photocopying, recording or otherwise without prior wri
39、tten permission from BSI.This does not preclude the free use, in the course of implementing the standard, of necessary details such as symbols, and size, type or grade designations. If these details are to be used for any other purpose than implementation then the prior written permission of BSI must be obtained.Details and advice can be obtained from the Copyright and Licensing Manager. Tel: +44 (0)20 8996 7070 Email: BS EN 62340:2010
