Technical Recommendations of Interface for Safety and Security Aspects of NPP Instrumentation and Control Systems in Indonesia

Abstract

Instrumentation and control (I&C) systems are crucial in ensuring the safe operation of power reactors. New and modern nuclear facilities commonly use digital I&C systems. However, the application of digital technologies within I&C systems has made these systems vulnerable to cyber-attack. Literature study shows that cyber-attack is one of the threats that could occur at any time in the lifetime of the I&C system. Indonesia regulates cyber security and interface of safety and security through BAPETEN Chairman Regulation (BCR) number 1 of 2009 on Nuclear Installation Physical Protection and BCR number 6 of 2012 on Design Provision of Computer-Based Important Safety System on Power Reactor. The provision related to interface safety and security against cyber-attack has a significant gap compared to IAEA Requirements and Internationals practice. Therefore, this paper tries to identify technical recommendations for BCR number 1 of 2009 and BCR number 6 of 2012 related to the interface of safety and security and cyber security in the Nuclear Power Plant (NPP) I&C system using IAEA requirements and international practice. The paper concludes that some technical recommendations must be added to BCR 1 of 2009 and BCR 6 of 2012. These recommendations are required in establishing cyber security program, integrating a cyber-security program with physical protection system, implementing control networks with reduced interconnectivity, implementing defense-in-depth as an essential concept in designing the NPP I&C system, developing a highly integrated protection system platform that utilizes FPG, and integrating passive safety system into the safety system. Keywords: cyber-attack, safety and security interfaces, instrumentation and control system