Single-Failure Criterion

Safety-class systems are able to perform all required safety functions for a design basis accident (DBA) in the presence of the following:

  • Any single detectable failure within the safety-class systems concurrent with all identifiable but undetectable failures.
  • All failures caused by the single failure.
  • All failures and spurious system actions that cause, or are caused by, the DBA requiring the safety-class system function.

The single failure could occur prior to, or at any time during, the DBA for which the safety system is required to function.

