UGAF-ITS: Harmonizing AI Governance Frameworks for Intelligent Transportation Systems
A new framework, UGAF-ITS, consolidates 154 obligations from ISO/IEC 42001, the EU AI Act, and the NIST AI Risk Management Framework into 12 unified controls across eight governance domains. Developed for distributed Intelligent Transportation Systems (ITS), it addresses fragmentation among vehicle manufacturers, roadside integrators, and cloud operators. The framework uses a reproducible five-phase crosswalk methodology and a three-tier operating model to align control vocabularies, evidence expectations, and audit rhythms. This harmonization aims to reduce compliance effort and improve incident traceability in multi-stakeholder ITS deployments.
Key facts
- UGAF-ITS consolidates 154 source obligations from three AI governance instruments.
- The three instruments are ISO/IEC 42001, the EU AI Act, and the NIST AI Risk Management Framework.
- The framework produces 12 unified controls across eight governance domains.
- It uses a five-phase crosswalk methodology.
- A three-tier operating model is part of the framework.
- The framework targets distributed Intelligent Transportation Systems (ITS).
- Stakeholders include vehicle manufacturers, roadside integrators, and cloud operators.
- The EU AI Act imposes binding high-risk obligations from August 2026.
Entities
Institutions
- ISO/IEC
- European Union
- NIST