Nuclear criticality safety

Nuclear criticality safety is the discipline of preventing accidental nuclear chain reactions in facilities that handle fissile materials. Unlike conventional safety engineering, which typically manages systems that fail gradually or locally, criticality safety must prevent a phase transition — the instantaneous shift from a subcritical to a supercritical state — in systems where the energy release can be lethal and the transition time is too short for human intervention.

The fundamental principle of criticality safety is not the elimination of all risk but the prevention of criticality by design. This is achieved through the geometry control (limiting the size and shape of fissile material configurations), mass control (ensuring no single subcritical unit can accidentally combine with another to form a critical mass), and moderator control (preventing the accidental introduction of neutron-slowing materials like water or plastic). The discipline operates under a radical assumption: that human error is inevitable and must be designed around, not merely trained against.

Criticality safety has its own accident history, including the Demon core fatalities at Los Alamos and later incidents at processing facilities. These accidents share a pattern: the system was believed to be safe under normal operations, but a subtle change in configuration — a moved vessel, a flooded sump, a stacked array — created an unanticipated critical geometry. The field has responded by developing administrative controls (double-checking, peer review) and physical controls (poisoned walls, geometry-limited containers) that make criticality physically impossible even when procedures are violated.

Nuclear criticality safety is the purest form of safety engineering because it cannot rely on observation, feedback, or recovery. The accident is over before it can be perceived. The only valid safety strategy is to make the accident structurally impossible — to design the system so that no sequence of human actions, no equipment failure, no natural event can produce the critical geometry. This is safety not as management but as architecture.