CN102929598A - Man-machine interface design method for improving safety of nuclear power station - Google Patents

Man-machine interface design method for improving safety of nuclear power station Download PDF

Info

Publication number
CN102929598A
CN102929598A CN2012103616196A CN201210361619A CN102929598A CN 102929598 A CN102929598 A CN 102929598A CN 2012103616196 A CN2012103616196 A CN 2012103616196A CN 201210361619 A CN201210361619 A CN 201210361619A CN 102929598 A CN102929598 A CN 102929598A
Authority
CN
China
Prior art keywords
psf
machine interface
adjusts
man
picture
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2012103616196A
Other languages
Chinese (zh)
Other versions
CN102929598B (en
Inventor
田秀峰
姜兴伟
周彧
俞光卫
田晖
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Nuclear Power Engineering Co Ltd
Original Assignee
China Nuclear Power Engineering Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Nuclear Power Engineering Co Ltd filed Critical China Nuclear Power Engineering Co Ltd
Priority to CN201210361619.6A priority Critical patent/CN102929598B/en
Publication of CN102929598A publication Critical patent/CN102929598A/en
Application granted granted Critical
Publication of CN102929598B publication Critical patent/CN102929598B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Testing And Monitoring For Control Systems (AREA)
  • Monitoring And Testing Of Nuclear Reactors (AREA)

Abstract

The invention provides a man-machine interface design method for improving the safety of a nuclear power station. Whether a misoperation probability PSFHSI meets a requirement or not is judged, if not, whether a display picture factor PSFD, a warming factor PSFA and a computerized normalization factor PSFP meet a requirement or not is judged, and if not, the man-machine interface design is scientifically adjusted according to the PSFD, the PSFA and the PSFP, so that the operation safety of the nuclear power station is improved, the misoperation possibility is reduced, and the safety factor is increased.

Description

A kind of man-machine interface design method that improves nuclear plant safety
Technical field
The present invention is a kind of man-machine interface design method that improves nuclear plant safety, belongs to the technical fields such as nuclear plant safety, man-machine interaction.
Background technology
Along with the development of the technology such as computing machine, robotization and the raising of reliability, the modern digitizing I﹠amp of nuclear power plant; The application of C system and man-machine interface becomes possibility so that reduce availability and the security in power station transient state, unexpected shutdown and pressure shutdown, raising power station, simultaneously also so that raising operation and maintenance efficiency, reduction operating cost become possibility.At present, all adopt digitizing I﹠amp building the overwhelming majority of nuclear power plant in the world; C technology, the classical control system of a lot of built nuclear power plants and main control room have been carried out or have been planned to carry out digital improvement.Digitizing I﹠amp; The main flow that is designed to development of the application of C technology and digitizing man-machine interface.For example, " the digitizing I﹠amp of nuclear power plant; C system core Status of Research and development strategy " mentioned in (" Nuclear Power Engineering " S1 phase in 2002) in contents such as realization digitizing I﹠C systems of nuclear power plant.
The control room design of digitizing man-machine interface requires the angle from Human Engineering, optimizes Human Machine Interface, to improve operator's behavior performance, reduces people's mistake and occurs, and makes the power station be in the security monitoring state.
Correlative study document by analyzing domestic and international digitizing man-machine interface and to the investigation of domestic digitizing man-machine interface, sum up the digitizing man-machine interface and mostly have following characteristics:
Computerize operator workstation compact Layout, and have a plurality of display screens;
Function with perfect necessary for monitoring plant information, and according to functional requirement, design different types of comprehensive picture, support operator's situation awareness and decision-making;
Soft control, the control action in many power stations can carry out in computer screen;
The display mode variation comprises tabulation, icon, picture, acousto-optic etc.;
Have giant-screen and dynamically show, for all members in the main control room provide a unified situation awareness platform;
Advanced warning system can be organized, optimize and process alerting signal;
Computerized procedures, operator can guide according to rules and intervene power plant operation, and the process that operator is executed the task changes;
The intelligence booster action improves, and comprises the aspects such as processing, power plant's monitoring, rules tracking of reporting to the police;
The raising of automatization level has increased the effect of operator's system monitoring, has weakened the effect of its system's operation.
Compare with the main control room man-machine interface of conventional simulation Pan Tai, the digitizing man-machine interface has many apparent advantages, for example much information can be shown in a different manner or integrate, for the operator provides crucial information.This computerized information display mode has reduced operator's work and cognitive load, so that the operator can hold the integrality in power station fast.
Simultaneously, the digitizing man-machine interface is also served unfavorable factor to personnel's performance band, for example:
The restriction of window or picture disply quantity so that operating personnel can not be with the mode of quick eye scanning and fixing pattern-recognition acquired information, but need to could obtain needed demonstration through repeatedly selecting or opening a plurality of windows;
Interface operation has increased operator's cognitive load (as open, locate and adjust window), and the main task of administration interface and operator's processing is irrelevant, but notice that can scatter operation person;
The keyhole effect, the operator too pays close attention to a small amount of information, and has ignored " whole picture ";
Although adopt advanced warning system, the warning quantity that occurs during the power plant transient state is still more, may affect operator for the grasp of important warning;
The rules window that Computerized procedures provides is narrower, is unfavorable for that operator is to the overall understanding of rules;
Computerized system has also increased the overall complexity of control task.The operator sometimes can not understand, grasp the ongoing processing of computer system fully;
Robotization brings stress reducing of operator, so that the ability that they note abnormalities reduces.
Above-mentioned defective of the prior art is that nuclear safety work has brought certain hidden danger.The digitizing man-machine interface is in the application of nuclear power plant, behavior to operator may produce active influence, still, also might produce potential risks, therefore, estimate the digitizing man-machine interface in the design phase particularly important on the impact of the reliability generation of human behavior.Estimating one of effective method of this impact is exactly that the human reliability analyzes (HRA).
HRA is as the important component part of nuclear power plant's probabilistic safety analysis (PSA), can be used for the contribution of the misdeed of qualitative analysis when being in different running status with the qualitative assessment operator in nuclear power plant to power plant's risk.In digitizing nuclear power plant, HRA plays a role in the overall process of Human Machine Interface and application as an ingredient of human factor engineering design, for example verification and validation (the V﹠amp of HRA analysis and pulpit task analysis, human factor engineering design; V) complement one another, by display frame in operator's workstation, alarm design, Computerized procedures quality, staff training level etc. are carried out qualitative analysis or qualitative assessment, the digitizing man-machine interface is reflected in the contribution to the power station risk the impact of human behavior, thereby strengthens reliability and the security of nuclear power station operation.
Publish up to the present from nineteen eighty-three THERP handbook [5], multiple HRA method [6] occurred in the world, such as THERP, ASEP, HCR, SLIM, HEART, ATHEANA, CREAM, SPAR-H, HDT etc.Certain methods is used widely in many personnel of nuclear power plant fail-safe analysis because of its advantage at aspects such as availability, degree of ripeness, acceptabilities.At present, analyze the traditional HRA method of main employing based on the human reliability of digitizing man-machine interface in the world and guard assessment, such as THERP, ASEP, HCR, SPAR-H etc.The data source of these HRA methods is not considered characteristics and the impact thereof of digitizing man-machine interface, do not take into full account scientific and reasonable Human Machine Interface to the impact of nuclear power station handling safety yet, more can't clearly embody the digitizing man-machine interface to reliability and the security of nuclear power station operation.
Summary of the invention
For solving defective of the prior art, technical scheme of the present invention is as follows: a kind of man-machine interface design method that improves nuclear plant safety may further comprise the steps:
Step 1: judge the behavioral implications factor PSF that the digitizing man-machine interface is relevant HSIWhether meet the requirements described PSF HSI=PSF D* PSF A* PSF P, PSF wherein DBe the display frame factor, PSF ABe the warning factor, PSF PBe the Computerized procedures factor; Described satisfactory condition is PSF HSI<threshold value TH HSIIf: undesirable, then carry out step 2;
Step 2: judge respectively PSF D, PSF A, PSF PWhether meet the requirements described PSF DSatisfactory condition is PSF D<threshold value TH D, described PSF ASatisfactory condition is: PSF A<threshold value TH A, described PSF PSatisfactory condition is: PSF P<threshold value TH PIf undesirable, then carry out step 3;
Step 3: according to PSF D, and/or PSF A, and/or PSF PDesign is adjusted.
In the described step 3, according to PSF DThe step that design is adjusted further comprises:
Step 3-1-1 adjusts the link level, so that the click of straight target approach picture is no more than 3 times from any current picture.
PSF after if described step 3-1-1 adjusts DStill undesirable, then carry out step:
Step 3-1-2 adjusts picture color, literal, icon, so that picture tone is between 75~85, saturation degree is between 90~120, and brightness is between 190~205.
PSF after if described step 3-1-2 adjusts DStill undesirable, then carry out step:
Step 3-1-3 adjusts the image content accounting, is no more than 50% so that image content accounts for the ratio of picture;
Step 3-1-4 reduces the picture number of times that the user need to call.
In the described step 3, according to PSF AThe step that design is adjusted further comprises:
Step 3-2-1 adjusts the tabulation of reporting to the police, and the tabulation of reporting to the police is classified, for warning messages different in each class arranges different grades.
PSF after if described step 3-2-1 adjusts AStill undesirable, then carry out step:
Step 3-2-2 adjusts the complexity of reporting to the police and tabulating, and will independently report to the police to be combined into group alarm to reduce the alarming determining time.
PSF after if described step 3-2-2 adjusts AStill undesirable, then carry out step:
Step 3-2-3, adjust to report to the police with rules between be linked as direct the link.
In the described step 3, according to PSF PThe step that design is adjusted further comprises:
Step 3-3-1 adjusts the number of clicks that accurately enters Computerized procedures, is no more than 3 times so that directly enter the number of clicks of Computerized procedures from arbitrary current picture.PSF after if described step 3-3-1 adjusts PStill undesirable, then carry out step:
Step 3-3-2 embeds real-time processing data in the rules picture.
PSF after if described step 3-3-2 adjusts PStill undesirable, then carry out step:
Step 3-3-3 adjusts the automaticity that the rules step arranges;
Step 3-3-4, the operation steps of adjusting in the Computerized procedures makes it be easy to follow the tracks of, in order to effectively avoid operator to omit operation steps.
Beneficial effect of the present invention is as follows: by the behavioral implications factor PSF that judges that the digitizing man-machine interface is relevant HSI=PSF D* PSF A* PSF PWhether meet the requirements, if undesirable then according to PSF D, and/or PSF A, and/or PSF PThe science adjustment is carried out in design, improved the security of nuclear power station operation, reduced the probability of maloperation, strengthened safety coefficient.
Embodiment
Below will describe preferred embodiment of the present inventionly, those skilled in the art should be understood that these embodiments and nonrestrictive.
In the first embodiment of the present invention, the THERP+HCR pattern of revising is adopted in personnel's fail-safe analysis after the origination event.People's mistake probability divides three parts to analyze, i.e. the diagnostic error probability P 1, diagnose not response probability P 2, the misoperation probability P 3For the mistake of the people under the digitizing man-machine interface probability assessment, wherein P 1Do not perform an analysis, but according to conventional way, guard valuation; P 2Estimate with the HCR method; P 3Estimate with the THERP method of revising.
People's Cognitive Reliability model (HCR:Human Cognitive Reliability) is the method for calculating people's not response probability under free constraint condition.HCR method supposition is after an accident occurs and first clear and definite warning occurs, and runtime value teams and groups in time do not make the probability of response to this warning, and is relevant with the ratio of intermediate value response time of the pot life that allows its response and teams and groups.The intermediate value response time represents that the pulpit operator of half under certain man-machine interface condition, is subject to the time that can finish compulsory exercise after certain alerting signal spread effect.This time can be judged by the analog machine test or by field investigation or scientific statistics.It plays a crucial role for computing staff's not response probability.
People's cognitive behavior can be divided into three types: technical ability type (skill-based behavior), regular pattern composite (rule-based behavior), knowledge type (knowledge-based behavior).For very skilled, need not with reference to rules is that executable behavior is the technical ability type; Behavior unskilled or that need can carry out with reference to rules is regular pattern composite; The knowledge type behavior then is that those need operator with the understanding of oneself and judge the behavior of carrying out without clear in rules.People's trip of technical ability, regular pattern composite, knowledge type can be estimated by the method for testing of science for classification, and it is not to be marrow of the present invention place, is not therefore described in detail.
The HCR method has been set up personnel's not response probability and the semiempirical formula of assignment of mission between the time according to test figure, it meets lognormal distribution approx:
P ( t ) = 1 - φ [ l n ( t / T 1 / 2 ) σ ]
T: teams and groups' available response time;
T 1/2: through the intermediate value response time of finishing certain required by task after revising.
In preferred embodiment, the selection of parameter σ in other the embodiment, also can be selected the AM General data according to the human behavior type referring to table 1.For the behavior of technical ability type, select σ=0.4 to calculate; σ=0.6 is selected in the regular pattern composite behavior; σ=0.8 is selected in the knowledge type behavior.Under the extreme case, if there are not directly available guiding rules, get σ=1.0 this moment.
Table 1: parameter σ value
Figure BDA00002189949500081
The HCR implementation process is as follows:
1) determines people's type of cognition (knowledge type, regular pattern composite or technical ability type), thereby determine parameter σ value;
2) from run case historical record, analog machine, expert judgments, obtain intermediate value response time T 1/2, origin
3) according to operator's experience (K 1), pressure (psychology or physical stress K 2), man-machine interface (K 3) the three class performance shape factors adjustment intermediate value response time:
T 1/2=T 1/2,origin×(1+K 1)×(1+K 2)×(1+K 3)
Statistics shows, preferred K 1, K 2, K 3Choose and see Table 2.
Table 2: the adjusted coefficient K of performance shape factor
Figure BDA00002189949500082
For digitizing man-machine interface, K 3Selection will be according to PSF HSIAnalysis result.
Human error's probabilistic forecasting technology (THERP:Technique for Human Error Rate Prediction) is to use maximum human reliability's analytical approachs in the nuclear power station probabilistic risk analysis.
THERP adopts cause delay personnel's action in the part of the mode analyst of HRA event tree, in chronological order the various combination of all personnel's task performance of relating to is analyzed.THERP is a kind of more perfect human reliability's analytical model of setting up at the task analysis foundation, and the mechanism of analyst's mistake not only is provided, and numerical value and the method for quantification also is provided.THERP is decomposed into some elemental motions with people's operation, can be obtained people's mistake probability of complex operations by the probability of failure of these elemental motions.Task analysis among the THERP need to be described the task that operator, maintenance personal or teams and groups need to carry out, and the impact of analyzing the correlativity between the personnel of teams and groups and recovering the factor.The THERP method also provides man-machine interface, tension-causing factor, staff training and level of skill etc. to affect the PSF of human behavior to correction formula and the data of human error's probability in addition.
Probability of failure P for a certain key personnel's action 3.i(i=1,2 ..., n; Behave the cause delay key personnel of part of n moves total number), for example, can consider people's factors such as the accident sight of part, available power station information, man-machine interface of causing delay, the conventional data of choose reasonable THERP handbook the 20th chapter form (the typical data table is as shown in the table) obtains intermediate value NHEP and the EF of EOO and EOC.Then obtain corresponding average according to formula (1):
HEP = NHEP × exp ( ( ln EP 1.645 ) 2 2 ) - - - ( 1 )
The average sum of EOO and EOC is as people's mistake mathematical expectation of probability P of this step key personnel's action 3, i.BHEP
THERP table 20-7 is when using written rules, and the probability of an instruction is fallen in carelessness 1.
Annotate:
1. suppose when estimating that the degree of correlation is zero between every (or unit) and other (or unit), when this degree of correlation is non-vanishing, need to use correlation model to revise.
2. this hurdle is be used to the project that indicates this table, rather than the instruction items in the rules.
3. when the user needs input digit, suppose the correct list of the check that used.
4. Table A-2 has been listed incorrect use list of the check or has not been used the probability of available written rules.
If 5. very skilled to task, then use the lower limit on uncertain border, i.e. 001(EF=5).
The probability that THERP table 20-10 slips up when reading from alarm free shows and recording quantitative information
Figure BDA00002189949500111
Annotate:
1. in the high-pressure situation, if the place of serious violation people's routine custom is arranged in the design, then the HEF when reading quantitative values need multiply by 10.For example, the analogue instrument that increases from right to left of the numerical value of a horizontal positioned.
2. here " letter " refers to not pass on the part of meaning.And the monogram as MOV is to express exact meaning, and the record probability of failure can be ignored.
THERP table 20-12 manually controls 1.The time EOC probability of failure ()
Figure BDA00002189949500112
1. the HEP here only refers to carry out error, does not comprise that the decision of selecting which controller slips up.
2. if controller or the line-breaker that has carried out mark recovered, press the HEP in Table A-11 reconciliation statement.
3. the HEP with rotary knob controller (the 5th to seven) uses identical EF divided by 5().
4. this inefficacy is subject to the impact of indicator post indication readability, and controller's design and the difference of their position display are very large, and for some specific power plant, also can get EP is 3.
Preferably, can according to THERP handbook table 20-16, choose the PSF value;
THERP table 20-16 tensity and experience level are to the correction of HEP
Figure BDA00002189949500122
Annotate:
1. these HEP are from " the data in THERP handbook the 3rd part and the 20th chapter.Table A-16 has been listed error factor (EF).
2. the skilled worker refers to carry out that estimating of task had 6 months or the people of more experiences, and new hand then refers to be less than the people of 6 months experiences, and two class people have required license or proof.
3. step-by-step task is task routine, that rules instruct, as implements written verification rules.Dynamic task needs the man-machine interaction of higher degree, as making a strategic decision, follow the tracks of several functions, controlling the comprehensive of several functions or any above task.These characteristics are between step-by-step task and the dynamic task, the basic distinction to the response of unscheduled event the time.
4. diagnosis may be carried out under different tensities, scope very high from being moderate to (menace is nervous).For in the nervous situation of menace, individual's crash rate gets 025.Usually can involve a plurality of people." table 20-1 and table 20-3 have listed behind the supposition affair alarm in the THERP handbook, and main control room relates to the associating probability of failure of the personnel of the teams and groups diagnosis of unscheduled event diagnosis, the degree of correlation between the personnel that considered to provide in the Table A-1.
In addition, for the digitizing man-machine interface, analyze PSF HSIValue, people mistake probability is revised.
The suitable recovery factor (RFs:RecoveryFactors) is selected in master-control room operator's supervision after the simultaneously consideration accident, obtains the revised mathematical expectation of probability of should the step personnel botching routines according to formula (2):
P 3,i=P 3,i.BHEP×PSF×PSF HSI×RFs (2)
Total personnel probability of botching routines is:
P 3 = Σ i = 1 n P 3 . i - - - ( 3 )
More specifically, the invention provides the technical scheme of following optimum.Introduce digitizing man-machine interface performance shape factor PSF on HCR+THERP method basis HSI
For ensureing the safety of nuclear power station operation, the present invention further proposes the method for designing about operation interface and operating process, for the digitizing man-machine interface, from display frame, warning, the Computerized procedures three aspects: impact on personnel operation safety, introduce respectively different PSF HSIThe factor is revised, and their numbering is respectively PSF D, PSF A, PSF PDefinite principle of these three PSF factors sees Table 3.Wherein, PSF HSI=PSF D* PSF A* PSF PWork as PSF HSIWhen eligible, then think safe design.
Preferably, according to PSF HSIValue determine K 3The choosing value of (correction factor relevant with man-machine interface) is worked as PSF HSI<1 o'clock, K 3Value-0.22(is outstanding); Work as PSF HSI=1 o'clock, K 3Value 0(is good); Work as PSF HSI>1 o'clock, K 3Value 0.44(is medium).When using the THERP method, directly on duty with PSF to the probability calculation of traditional people's mistake HSIValue revised.
Table 3:PSF HSIDefinite principle of modifying factor
Figure BDA00002189949500132
Figure BDA00002189949500141
Referring to table 3, the present invention in conjunction with the statistics natural law to the response PSF of display frame to personnel operation safety DEstimate, objective, it is relevant with following factor:
1. the accurate number of clicks of target approach picture.The inventor shows through testing experiment repeatedly, in current picture, click 3 times or still less can be directly accurate target approach picture, can be so that the probability that operating personnel make mistakes reduces more than 90%, number of operations is more complicated, the probability of makeing mistakes is larger.Number of clicks is fewer, PSF DHigher.
2. color, icon, literal setting.Icon in the picture, literal, color setting can not cause visual fatigue, objective, " tone " of " color " between 75~85, " saturation degree " between 90~120, " brightness " can overcome the visual fatigue of human eye well between 190~205.And being about 1/200 of the screen total area, the area of single icon and wall scroll literal can suppress well people's kopiopia.The color setting is near above-mentioned numerical value, PSF DHigher.
3. picture is arranged rationality.It is clear that picture is arranged, too the complicated content picture that is full of too many function button, Word message easily causes mixed sense, is unfavorable for that human eye navigates on the object content quickly and accurately.The ratio (for example area ratio) that can use image content to account for picture is determined the rationality that picture is arranged, for example according to the inventor repeatedly objective statistics show, image content is less than 50%, accurate rapid positioning operation target device, and do not disturb normal use.Image content is fewer, PSF DHigher.
4. the integrated information of user interface.Comprehensive inhomogeneity feature content on the same user interface, perhaps the multistage feature content of similar function can improve monitoring efficiency and accuracy.Experiment shows, for a series of actions that will finish, the picture that the user need to call is fewer, more is conducive to fast, correctly finishes the work.Finish frame numbers that particular task calls more near 1, PSF DHigher.
About PSF A, objective, it relates to:
1. warning list category rationality, the list category of reasonably reporting to the police can reduce a plurality of warnings of occurring simultaneously to operator's interference, are convenient to make fast and accurately response; In a better real-time mode, the tabulation of reporting to the police is classified, for warning messages different in each class arranges different grades.List category is more concrete, PSF AHigher.
2. the complexity of reporting to the police and tabulating.Show by statistics, group alarm is compared with independent the warning, and warning message is clear and definite, can reduce the alarming determining time; The group alarm tabulation is more, then PSF ALower.
3. report to the police with rules between link easy degree, linking between warning and the rules is simpler, then more is convenient to quick response is made in warning, thereby can promotes better safe class, PSF AHigher.Preferably, preferably adopt direct link form.
About PSF P, it relates to following factor:
1. accurately enter the number of clicks of Computerized procedures.In current picture, click 3 times or still less can directly accurately enter Computerized procedures, can be so that the probability that operating personnel make mistakes reduce more than 90%, number of operations is more complicated, and the probability of makeing mistakes is larger.Number of clicks is fewer, PSF PHigher.
2. whether embed real-time processing data in the rules picture.In the rules picture, embed efficient and the accuracy that real-time processing data can improve agendum; The real-time processing data amount that embeds is more, PSF PHigher.
3. the automaticity that arranges of rules step.The setting of rules step can be finished automatically by system, the more high generation that more can effectively avoid the personnel operation mistake of automaticity; The quantity of human intervention is fewer, PSF PHigher.
4. the operation steps in the Computerized procedures is easy to follow the tracks of, and can effectively avoid operator to omit operation steps.The parameter value of modifying factor derives from the quantitative evaluation index that affects for man-machine interface in the research of traditional HRA method in the table, and on this basis through a large amount of HRA qualitative assessments proved as a result, so that these parameter values as far as possible reasonably are applicable to the quantitative test of digitizing man-machine interface HRA.
On the basis of above-mentioned technology, a kind of man-machine interface design method that improves nuclear plant safety is provided in the another embodiment of the invention, may further comprise the steps:
Step 1: judge the behavioral implications factor PSF that the digitizing man-machine interface is relevant HSIWhether meet the requirements described PSF HSI=PSF D* PSF A* PSF P, PSF wherein DBe the display frame factor, PSF ABe the warning factor, PSF PBe the Computerized procedures factor; Described satisfactory condition is PSF HSI<threshold value TH HSIIf: undesirable, then carry out step 2;
Step 2: judge respectively PSF D, PSF A, PSF PWhether meet the requirements described PSF DSatisfactory condition is PSF D<threshold value TH D, described PSF ASatisfactory condition is: PSF A<threshold value TH A, described PSF PSatisfactory condition is: PSF P<threshold value TH PIf undesirable, then carry out step 3;
Step 3: according to PSF D, and/or PSF A, and/or PSF PDesign is adjusted.
In the described step 3, according to PSF DThe step that design is adjusted further comprises:
Step 3-1-1 adjusts the link level, so that the click of straight target approach picture is no more than 3 times from any current picture.
PSF after if described step 3-1-1 adjusts DStill undesirable, then carry out step:
Step 3-1-2 adjusts picture color, literal, icon, so that picture tone is between 75~85, saturation degree is between 90~120, and brightness is between 190~205.
PSF after if described step 3-1-2 adjusts DStill undesirable, then carry out step:
Step 3-1-3 adjusts the image content accounting, is no more than 50% so that image content accounts for the ratio of picture;
Step 3-1-4 reduces the picture number of times that the user need to call.
In the described step 3, according to PSF AThe step that design is adjusted further comprises:
Step 3-2-1 adjusts the tabulation of reporting to the police, and the tabulation of reporting to the police is classified, for warning messages different in each class arranges different grades.
PSF after if described step 3-2-1 adjusts AStill undesirable, then carry out step:
Step 3-2-2 adjusts the complexity of reporting to the police and tabulating, and will independently report to the police to be combined into group alarm to reduce the alarming determining time.
PSF after if described step 3-2-2 adjusts AStill undesirable, then carry out step:
Step 3-2-3, adjust to report to the police with rules between be linked as direct the link.
In the described step 3, according to PSF PThe step that design is adjusted further comprises:
Step 3-3-1 adjusts the number of clicks that accurately enters Computerized procedures, is no more than 3 times so that directly enter the number of clicks of Computerized procedures from arbitrary current picture.PSF after if described step 3-3-1 adjusts PStill undesirable, then carry out step:
Step 3-3-2 embeds real-time processing data in the rules picture.
PSF after if described step 3-3-2 adjusts PStill undesirable, then carry out step:
Step 3-3-3 adjusts the automaticity that the rules step arranges;
Step 3-3-4, the operation steps of adjusting in the Computerized procedures makes it be easy to follow the tracks of, in order to effectively avoid operator to omit operation steps.
With M310 nuclear power plant under the Power operation operating mode, occur after loop minor break (SLOCA) accident in 60 minutes, operator is in judge accident and to carry out a loop fast cooling reduced pressure operation according to A1.1 rules (a loop minor break malfunction protocol) be example of digitizing man-machine interface.
Operator's response was after accident occured:
1) the A0(peace clicked in the picture of operator is annotated later accident diagnosis rules) alarm button directly enters Computerized procedures A0 rules and diagnoses, enter the A1.1 rules according to the diagnostic result clickthrough, and finish accident diagnosis and confirm in the A1.1 rules.For this diagnostic procedure, the probability P of its diagnostic error 1Expression; It fails in time to finish the probability P of diagnosis 2Expression.
2) the GCT navigation link clicked in the rules picture of secondary circuit operator enters the GCT system interface, and the controller of GCT131VV, GCT132VV, GCT133VV is made as " MANU " pattern, and the control valve position, and making a circuit cools speed is 56 ℃/h.Its misoperation probability P 3Expression.
According to operational experience feedback, operator is very skilled for other behaviour in the A1.1 rules, therefore ignores its misoperation probability.
In people's mistake probability analysis process of present event, except the parameter that traditional HCR+THERP method need to be determined, for the digitizing man-machine interface, also need to introduce PSF HSIModifying factor.Preferably, the present invention determines following parameter according to test statistics repeatedly, and these parameters are not unique value, can set according to actual conditions in actual applications:
PSF D=0.5, outstanding
PSF A=1, good
PSF P=1, good
PSF HSI=0.5×1×1=0.5
For the parameter value in the HCR model, determine:
σ=0.6, regular pattern composite
K 1=0.00, the average level of training
K 2=0.28, potential stress sight
K 3=-0.22, man-machine interface is outstanding (according to PSF HSI<1)
The concrete computation process of this people's mistake probability is as follows:
1) according to hypothesis, P 1=1E-4;
2) use the HCR method and calculate P 2,
P 2 = 1 - φ [ ln ( t / T 1 / 2 ) σ ] = 1 - φ [ ln ( 51.92 / 3.00 ) 0.6 ] = 1 - 1 = 0
T wherein 1/2=T 1/2, origin* (1+K 1) * (1+K 2) * (1+K 3);
T 1/2, originBe the intermediate value response time of operator's diagnosis, obtaining this time by run case historical record, analog machine, judgement is 3 minutes;
T is for allowing Diagnostic Time, and deducting operator's operation and stand-by period by the thermal-hydraulic time window, to obtain the preferred value of this time be 51.92 minutes.
3) use the THERP method of revising and calculate P 3,
P 3=(HEP M1+HEP M2)×PSF×PSF HSI×RF 1×RF 2
=(0.00375+0.00125) * 2 * 0.5 * 0.15 * 0.05=3.75E-5(average)
HEP wherein M1The operator who obtains for the THERP method omits the mathematical expectation of probability of operation steps;
HEP M2The mathematical expectation of probability of the operator's operating mistake that obtains for the THERP method;
PSF is the master-control room operator's that obtains of THERP method pressure load level;
RF is the recovery factor that the THERP method obtains expeditor and An worker.
4) total people's mistake probability HEP=P 1+ P 2+ P 3=1.375E-4, EF=3.
Beneficial effect of the present invention is as follows:
By decision operation probability of failure PSF HSI=PSF D* PSF A* PSF PWhether meet the requirements, if undesirable then according to PSF D, and/or PSF A, and/or PSF PThe science adjustment is carried out in design, improved the security of nuclear power station operation, reduced the probability of maloperation, strengthened safety coefficient.

Claims (10)

1. man-machine interface design method that improves nuclear plant safety may further comprise the steps:
Step 1: decision operation probability of failure PSF HSIWhether meet the requirements described PSF HSI=PSF D* PSF A* PSF P, PSF wherein DBe the display frame factor, PSF ABe the warning factor, PSF PBe the Computerized procedures factor; Described satisfactory condition is PSF HSI<threshold value TH HSIIf: undesirable, then carry out step 2;
Step 2: judge respectively PSF D, PSF A, PSF PWhether meet the requirements described PSF DSatisfactory condition is PSF D<threshold value TH D, described PSF ASatisfactory condition is: PSF A<threshold value TH A, described PSF PSatisfactory condition is: PSF P<threshold value TH PIf undesirable, then carry out step 3;
Step 3: according to PSF D, and/or PSF A, and/or PSF PDesign is adjusted.
2. the method that designs based on the raising nuclear plant safety of digitizing man-machine interface as claimed in claim 1 is characterized in that: in the described step 3, according to PSF DThe step that design is adjusted further comprises:
Step 3-1-1 adjusts the link level, so that the click of straight target approach picture is no more than 3 times from any current picture.
3. the method that designs based on the raising nuclear plant safety of digitizing man-machine interface as claimed in claim 2 is characterized in that: if PSF after described step 3-1-1 adjusts DStill undesirable, then carry out step:
Step 3-1-2 adjusts picture color, literal, icon, so that picture tone is between 75~85, saturation degree is between 90~120, and brightness is between 190~205.
4. the method that designs based on the raising nuclear plant safety of digitizing man-machine interface as claimed in claim 3 is characterized in that: if PSF after described step 3-1-2 adjusts DStill undesirable, then carry out step:
Step 3-1-3 adjusts the image content accounting, is no more than 50% so that image content accounts for the ratio of picture;
Step 3-1-4 reduces the picture number of times that the user need to call.
5. the method that designs based on the raising nuclear plant safety of digitizing man-machine interface as claimed in claim 1 is characterized in that: in the described step 3, according to PSF AThe step that design is adjusted further comprises:
Step 3-2-1 adjusts the tabulation of reporting to the police, and the tabulation of reporting to the police is classified, for warning messages different in each class arranges different grades.
6. the method that designs based on the raising nuclear plant safety of digitizing man-machine interface as claimed in claim 5 is characterized in that: if PSF after described step 3-2-1 adjusts AStill undesirable, then carry out step:
Step 3-2-2 adjusts the complexity of reporting to the police and tabulating, and will independently report to the police to be combined into group alarm to reduce the alarming determining time.
7. the method that designs based on the raising nuclear plant safety of digitizing man-machine interface as claimed in claim 6 is characterized in that: if PSF after described step 3-2-2 adjusts AStill undesirable, then carry out step:
Step 3-2-3, adjust to report to the police with rules between be linked as direct the link.
8. the method that designs based on the raising nuclear plant safety of digitizing man-machine interface as claimed in claim 1 is characterized in that: in the described step 3, according to PSF PThe step that design is adjusted further comprises:
Step 3-3-1 adjusts the number of clicks that accurately enters Computerized procedures, is no more than 3 times so that directly enter the number of clicks of Computerized procedures from arbitrary current picture.
9. the method that designs based on the raising nuclear plant safety of digitizing man-machine interface as claimed in claim 8 is characterized in that: if PSF after described step 3-3-1 adjusts PStill undesirable, then carry out step:
Step 3-3-2 embeds real-time processing data in the rules picture.
10. the method that designs based on the raising nuclear plant safety of digitizing man-machine interface as claimed in claim 9 is characterized in that: if PSF after described step 3-3-2 adjusts PStill undesirable, then carry out step:
Step 3-3-3 adjusts the automaticity that the rules step arranges;
Step 3-3-4, the operation steps of adjusting in the Computerized procedures makes it be easy to follow the tracks of, in order to effectively avoid operator to omit operation steps.
CN201210361619.6A 2012-09-25 2012-09-25 A kind of man-machine interface design method improving nuclear plant safety Active CN102929598B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210361619.6A CN102929598B (en) 2012-09-25 2012-09-25 A kind of man-machine interface design method improving nuclear plant safety

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210361619.6A CN102929598B (en) 2012-09-25 2012-09-25 A kind of man-machine interface design method improving nuclear plant safety

Publications (2)

Publication Number Publication Date
CN102929598A true CN102929598A (en) 2013-02-13
CN102929598B CN102929598B (en) 2016-03-30

Family

ID=47644411

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210361619.6A Active CN102929598B (en) 2012-09-25 2012-09-25 A kind of man-machine interface design method improving nuclear plant safety

Country Status (1)

Country Link
CN (1) CN102929598B (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104050047A (en) * 2013-03-13 2014-09-17 鸿富锦精密工业(深圳)有限公司 Fool-proof mechanism adjusting method and system
JP2018124734A (en) * 2017-01-31 2018-08-09 三菱重工業株式会社 Layout process support system and control method and program
CN111158273A (en) * 2019-12-20 2020-05-15 中核控制系统工程有限公司 Method for realizing safety display interface without operating system
CN111949263A (en) * 2020-07-08 2020-11-17 中核武汉核电运行技术股份有限公司 Human factor engineering design verification method based on image recognition technology
CN112068909A (en) * 2020-07-31 2020-12-11 中核核电运行管理有限公司 Nuclear power operation rule mobile execution card generation system and method

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007122119A1 (en) * 2006-04-14 2007-11-01 Thales Production and management method for changes to interface libraries
CN102640098A (en) * 2009-12-16 2012-08-15 Abb股份有限公司 Method and system for providing an HMI in a process control system for monitoring and control of a process

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007122119A1 (en) * 2006-04-14 2007-11-01 Thales Production and management method for changes to interface libraries
CN102640098A (en) * 2009-12-16 2012-08-15 Abb股份有限公司 Method and system for providing an HMI in a process control system for monitoring and control of a process

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
姜红英 等: "飞机座舱显示/控制系统的综合评价方法", 《中华航空航天医学杂志》 *
康卫勇 等: "人机显示/控制界面适配性综合评价指标和评价方法", 《中国安全科学学报》 *

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104050047A (en) * 2013-03-13 2014-09-17 鸿富锦精密工业(深圳)有限公司 Fool-proof mechanism adjusting method and system
CN104050047B (en) * 2013-03-13 2017-05-10 赛恩倍吉科技顾问(深圳)有限公司 Fool-proof mechanism adjusting method and system
JP2018124734A (en) * 2017-01-31 2018-08-09 三菱重工業株式会社 Layout process support system and control method and program
CN111158273A (en) * 2019-12-20 2020-05-15 中核控制系统工程有限公司 Method for realizing safety display interface without operating system
CN111158273B (en) * 2019-12-20 2021-04-13 中核控制系统工程有限公司 Method for realizing safety display interface without operating system
CN111949263A (en) * 2020-07-08 2020-11-17 中核武汉核电运行技术股份有限公司 Human factor engineering design verification method based on image recognition technology
CN111949263B (en) * 2020-07-08 2024-05-14 中核武汉核电运行技术股份有限公司 Man-factor engineering design verification method based on image recognition technology
CN112068909A (en) * 2020-07-31 2020-12-11 中核核电运行管理有限公司 Nuclear power operation rule mobile execution card generation system and method
CN112068909B (en) * 2020-07-31 2023-10-20 中核核电运行管理有限公司 Nuclear power operation rule mobile execution card generation system and method

Also Published As

Publication number Publication date
CN102929598B (en) 2016-03-30

Similar Documents

Publication Publication Date Title
CN102915512A (en) Nuclear power plant safe operation evaluation method based on digitalized human-computer interface
Swain Accident sequence evaluation program: Human reliability analysis procedure
Sheridan Understanding human error and aiding human diagnostic behaviour in nuclear power plants
CN102929598B (en) A kind of man-machine interface design method improving nuclear plant safety
Park et al. An experimental investigation on relationship between PSFs and operator performances in the digital main control room
Park et al. A framework to collect human reliability analysis data for nuclear power plants using a simplified simulator and student operators
Li et al. Methodology for analyzing the dependencies between human operators in digital control systems
JP3068091B1 (en) Fault diagnosis device
Lin et al. Automation design in advanced control rooms of the modernized nuclear power plants
Li et al. A validation research on fuzzy logic-AHP-based assessment method of operator’s situation awareness reliability
Parry Suggestions for an improved HRA method for use in probabilistic safety assessment
Boring Defining human failure events for petroleum applications of human reliability analysis
Zhang et al. The simulator experimental study on the operator reliability of Qinshan nuclear power plant
Sun et al. Human reliability assessment of intelligent coal mine hoist system based on Bayesian network
Hildebrandt et al. Micro task evaluation of analog vs. digital power plant control room interfaces
CN106127372A (en) The human reliability of a kind of applicable digitized master control room analyzes method
COYNE et al. Nuclear Plant Control Room Operator Modeling Within the ADS-IDAC, Version 2, Dynamic PRA Environment: Part 1-General Description and Cognitive Foundations.
Massaiu et al. Comparing operator reliability in analog vs. digital human-system interfaces: an experimental study on identification tasks
Kim et al. Design and implementation of HuREX analysis supporting interface for HRA data extraction
Kim et al. Investigation on applicability of information theory to prediction of operator performance in diagnosis tasks at nuclear power plants
Groth A framework for using SACADA to enhance the qualitative and quantitative basis of HRA
Chang et al. SACADA data for HEP estimates
Kim et al. AGAPE‐ET: A methodology for human error analysis of emergency tasks
Holý Some insights from recent applications of HRA methods in PSA effort and plant operation feedback in Czech Republic
Le Blanc et al. Review of methods related to assessing human performance in nuclear power plant control room simulations

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant