IDS is an Italian company that has developed HERO, a remotely piloted aircraft system weighing 150kg that will be operational in 2015. Most of the innovative technologies used in remote piloted aircraft systems, such as positioning, navigation, and communication, are software-based, which presents a major issue of software liability. IDS worked closely with Italy's civil aviation authority, ENAC, during the development and testing of HERO to ensure it meets applicable regulations and limits risks, and HERO will be the first remotely piloted aircraft certified in Italy in its weight category.
2. Liability for innovative technology
(in particular software)
• IDS was founded in 1980 and is an
international company of about 500
employees
• IDS S.p.A and Sistemi Dinamici S.p.A. (a
Joint venture with AgustaWestland) have
developed HERO, a remotely piloted
aircraft system (RPAS)
• HERO, a helicopter with a 150 kg take-off
weight, will be operational in 2015.
3. Innovative technologies in RPAS
• Innovative technologies in
remotely piloted aircraft systems
related to:
– Positioning
– Navigation
– Communicating
• More than 80% of these
technologies are software-based.
• Hence software liability is a
major issue.
Foto di Hero in
volo
4. Process followed by IDS for HERO
• IDS was followed during each step by an ENAC (National Civil Aviation
Authority) team who checked that all phases of development and testing
were consistent with applicable regulations to limit risks.
• Our HERO will the first RPAS to be certified in Italy in its category
(25Kg<MTOW<150Kg)
5. Environment and the human role in safe drone
operations
• Safe operations concern surrounding
environment and human interactions
• Safe drone operations can be affected by:
– unexpected bad weather conditions,
– improper pilot reactions
• The risk of pilot error can be mitigated by
adequate training.
• Pilot Training using Simulations can improve
pilot skills that cannot be tested in a harsh real
environment.
6. IDS measures to limit the misuse of RPAS
• Pilot induced accidents, caused by poor training, can impact the RPAS
manufacturer due to a need to prove pilot responsibility.
• To contain this risk, IDS provides a Ground Control Station with Embedded Training
functions using simulation models and in addition IDS will request that RPAS users
pass a training course.
• IDS mission preparation tools enable the pilot to predict aircraft dynamics, sensor
footprints, potential area of impact and communications continuity with GNSS
signals and RPA-GCS up and up &down links.
7. IDS actions to limit RPAS liabilities
in non segregated airspace
• Ensuring aircraft fly-ability by adhering to design and development processes
approved and checked by ENAC, and thorough testing in segregated areas.
• Enabling the pilot to investigate potential risks in all flight and landing phases
during mission rehearsal in the GCS.
• Cooperating with Eurocontrol in the INSuRE program validation and
demonstration activities, with live trials addressing the integration of RPAS in
both non-segregated and segregated airspaces
8. Liability and Cyber Attacks on drones
• Drones are cyber systems connected through up & down non
physical links.
• A cyber threat can:
– Deny (by means of interferences) the GCS uplink commands to the
RPAS
– intercept the downlink signals
– capture the uplink and take full operational control of the drones.
• Secure communications constitute an innovative field that will
be dealt with using physical and software means.
9. Liability impacts time to market and insurance fees
• Industries have to sustain extra costs as an indispensable condition to get
system operations qualification from avionic safety agencies and to
ensure safety in the skies.
• This extra cost is a social cost to ensure safe skies.
• Final users might be misled when selecting their needed system when
choosing on immediate non recurrent costs
• Insurance fees could be a starting point when making decisions about
the suitable RPAS.
10. Something to ponder
• The major costs incurred in reducing system operation risks at all levels
could be compensated by a reduction of insurance fees.
• Lower insurance fees should be applicable to users that choose qualified
products.
• How about regulating Bodies such as ICAO and EASA (European Aviation
Safety Agency) as well as Insurance Companies increasing entry barriers
high enough to keep non-compliant (in terms of risk mitigation) systems
out of the market?
Editor's Notes
Good morning my name is Sarah Bardelli I’m the contract officer manager of IDS Ingegneria Dei Sistemi S.p.A.
I have worked in IDS since 1997.
I commenced in the account department
Then I cooperated for 10 years in the contractual department
My background is in business and administration.
Then when Prof. Anna Masutti invited me at this conference, I put around a table a few engineers (we have more than 350 engineers) and I invited them to squeeze their brains.
IDS S.p.A and Sistemi Dinamici S.p.A. (a Joint venture with AgustaWestland) have developed HERO, a remotely piloted air system (RPAS)
HERO, a 150 kg helicopter at take-off weight, will be operational in 2015 pending the results of the ongoing ENAC qualification process
As we will demonstrate, software and its use by the pilot are the major source of liabilities.
Innovative technologies in remotely piloted air systems are related to:
Position
Navigation
Communication
RPAS is a system that has to perform a given mission within a number of constraints, where it has, as a minimum, to:
find its position with respect to a given reference system;
navigate to get to the area of operation;
gather data and images using its sensing equipment;
communicate with the pilot at the ground control station.
More than 80% of these technologies are software-based.
IDS has addressed product liability and accident risk mitigation starting from the conceptual design phase, then continuing through to its development, fabrication, testing, production and use.
IDS was followed during each step by an ENAC (National Aeronautical Authority) team that checked that all operations were consistent with applicable regulations to limit risks.
The surrounding environment and human interactions impact safe operations
such as:
unexpected bad weather conditions,
improper pilot reactions
The risk of pilot error can be mitigated by adequate training
The role of simulations can improve pilot skills and their reactions to unforeseen situations that cannot be tested in a harsh real environment.
Pilots induced accidents, provoked by poor training, impact the RPAS manufacture that has to clear itself in proving the human responsibility.
To contain this risk, IDS provides a Ground Control Station with Embedded Training functions using simulations models and in addition request a stage of training for its RPAS users.
IDS mission preparation tools enable the pilot to predict (in the mission rehearsal function) aircraft dynamics, sensors footprints, potential area of impact and communications continuity with GNSS signals and RPA-GCS up and up &down links.
IDS actions to limit liabilities
As said, redundancy in flight critical components, design processes checked by ENAC, and a thorough testing in segregated areas will ensure aircraft fly-ability.
In addition, IDS has dedicated great attention to RPA mission-safe preparation in the GCS by enabling the pilot to investigate potential risks in all flight and landing phases .
To be ready for drone operations in the civil airspace, IDS is already cooperating with Eurocontrol in INSuRE program validation and demonstration activities, with live trials, addressing the integration of RPAS in both non-segregated and segregated airspaces
Liability and Cyber Attacks on drones
Drones are de facto cyber systems connected through up&down non physical links.
A cyber threat can jeopardise drone operations by
Interfering the GCS uplink commands to the RPAS
Stealing the payload data in the down link signals
taking full operational control of the drone by capturing the uplink .
Secure communications constitute an innovative field that will be dealt with using physical and software means.
Industries have to sustain extra costs as the indispensable condition to get system operations qualification from avionic safety agencies and to ensure safety in the skies.
This extra cost is a social cost to ensure safe skies.
Final users might be misguided when selecting their needed system when choosing on immediate non recurrent costs
Insurance fees could be a starting point when making decisions about the suitable RPAS.
IDS is confident that the major costs that has invested by adopting liability mitigation measures, according to ENAC procedures, all focused on reducing system operation risks at all levels including machine and pilot interaction, could be compensated by a reduction of insurance fee.
At the end of the day, also the final user could benefit from premium insurance fee when getting IDS products.
To support this policy, Regulating Bodies such as ICAO or EASA (European Aviation Safety Agency) as well as Insurance Companies would need to raise stakes high enough to keep non-compliant (in terms of risks mitigation) systems out of the market.