UGAF-ITS: A Standards Harmonization Framework and Validation Tool for Multi-Framework AI Governance in Distributed Intelligent Transportation Systems

Researchers Talal Ashraf Butt, Muhammad Iqbal, and Razi Iqbal have unveiled UGAF-ITS, a standards harmonization framework designed to unify fragmented AI governance across distributed Intelligent Transportation Systems (ITS). The framework consolidates 154 source obligations from three major instruments—ISO/IEC 42001 (certifiable management systems), the EU AI Act (binding high-risk obligations from August 2026), and the NIST AI Risk Management Framework (voluntary practices)—into 12 unified controls across eight governance domains. This is achieved through a reproducible five-phase crosswalk methodology that maps overlapping requirements into a single, coherent set of controls.

UGAF-ITS introduces a three-tier operating model that allocates each control to the vehicle, edge, or cloud tier where enforcement and evidence production are most feasible. An evidence backbone of 20 versioned artifacts supports a single audit package across all three frameworks without duplicating content. The framework is validated through an open-source governance engine tested across four architecturally distinct ITS deployment scenarios. Results show three-tier deployments achieve 91.7% average framework coverage with 45.9% evidence reduction, complete bidirectional traceability, and 80% of artifacts serving all three frameworks simultaneously. Partial deployments degrade gracefully, scaling coverage and reduction with architectural complexity. The tool, scenarios, and results are publicly available for independent replication.