ISO/IEC TS 8200:2024

Technical
Specification
ISO/IEC TS 8200
First edition
Information technology —
2024-04
Artificial intelligence —
Controllability of automated
artificial intelligence systems
Technologies de l'information — Intelligence artificielle —
Contrôlabilité des systèmes d'intelligence artificiels automatisés
Reference number
© ISO/IEC 2024
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on
the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below
or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
© ISO/IEC 2024 – All rights reserved
ii
Contents Page
Foreword .v
Introduction .vi
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Abbreviations . 5
5 Overview . 5
5.1 Concept of controllability of an AI system .5
5.2 System state .6
5.3 System state transition .7
5.3.1 Target of system state transition.7
5.3.2 Criteria of system state transition .7
5.3.3 Process of system state transition .7
5.3.4 Effects .8
5.3.5 Side effects .8
5.4 Closed-loop and open-loop systems .8
6 Characteristics of AI system controllability . 9
6.1 Control over an AI system .9
6.2 Process of control . .11
6.3 Control points . 12
6.4 Span of control . 13
6.5 Transfer of control . 13
6.6 Engagement of control . 15
6.7 Disengagement of control .16
6.8 Uncertainty during control transfer .17
6.9 Cost of control .17
6.9.1 Consequences of control .17
6.9.2 Cost estimation for a control .18
6.10 Cost of control transfer .18
6.10.1 Consequences of control transfer .18
6.10.2 Cost estimation for a control transfer .18
6.11 Collaborative control .18
7 Controllability of AI system . 19
7.1 Considerations .19
7.2 Requirements on controllability of AI systems . 20
7.2.1 General requirements . 20
7.2.2 Requirements on controllability of continuous learning systems .21
7.3 Controllability levels of AI systems.21
8 Design and implementation of controllability of AI systems .22
8.1 Principles . 22
8.2 Inception stage . 23
8.3 Design stage .24
8.3.1 General .24
8.3.2 Approach aspect .24
8.3.3 Architecture aspect . 25
8.3.4 Training data aspect. 25
8.3.5 Risk management aspect . 25
8.3.6 Safety-critical AI system design considerations . 25
8.4 Suggestions for the development stage . 25
9 Verification and validation of AI system controllability .26
9.1 Verification . . 26

© ISO/IEC 2024 – All rights reserved
iii
9.1.1 Verification process . 26
9.1.2 Output of verification . 26
9.1.3 Functional testing for controllability . 26
9.1.4 Non-functional testing for controllability .27
9.2 Validation . 28
9.2.1 Validation process . 28
9.2.2 Output of validation . 28
9.2.3 Retrospective validation . 28
Annex A (informative) Example verification output documentation.30
Annex B (informative) Example validation output documentation .32
Bibliography .34

© ISO/IEC 2024 – All rights reserved
iv
Foreword
ISO (the International Organization for Standardization) and IEC (the International Electrotechnical
Commission) form the specialized system for worldwide standardization. National bodies that are
members of ISO or IEC participate in the development of International Standards through technical
committees established by the respective organization to deal with particular fields of technical activity.
ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations,
governmental and non-governmental, in liaison with ISO and IEC, also take part in the work.
The procedures used to develop this document and those intended for its further maintenance are described
in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the different types
of document should be noted. This document was drafted in accordance with the editorial rules of the ISO/
IEC Directives, Part 2 (see www.iso.org/directives or www.iec.ch/members_experts/refdocs).
ISO and IEC draw attention to the possibility that the implementation of this document may involve the
use of (a) patent(s). ISO and IEC take no position concerning the evidence, validity or applicability of any
claimed patent rights in respect thereof. As of the date of publication of this document, ISO and IEC had not
received notice of (a) patent(s) which may be required to implement this document. However, implementers
are cautioned that this may not represent the latest information, which may be obtained from the patent
database available at www.iso.org/patents and https://patents.iec.ch. ISO and IEC shall not be held
responsible for identifying any or all such patent rights.
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation of the voluntary nature of standards, the meaning of ISO specific terms and expressions
related to conformity assessment, as well as information about ISO's adherence to the World Trade
Organization (WTO) principles in the Technical Barriers to Trade (TBT) see www.iso.org/iso/foreword.html.
In the IEC, see www.iec.ch/understanding-standards.
This document was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology,
Subcommittee SC 42, Artificial intelligence.
Any feedback or questions on this document should be directed to the user’s national standards
body. A complete listing of these bodies can be found at www.iso.org/members.html and
www.iec.ch/national-committees.

© ISO/IEC 2024 – All rights reserved
v
Introduction
Artificial intelligence (AI) techniques have been applied in domains and markets such as health care,
education, clean energy and sustainable living. Despite being used to enable systems to perform automated
predictions, recommendations or decisions, AI systems have raised a wide range of concerns. Some
characteristics of AI systems can introduce uncertainty in predictability of AI system behaviour. This can
bring risks to users and other persons. For this reason, controllability of AI systems is very important.
This document is primarily intended as a guidance for AI system design and use in terms of controllability
realization and enhancement.
Controllability characteristics (see Clause 6) and principles of AI systems are identified in this document.
This document describes the needs of controllability in a domain-specific context and strengthens the
understanding of an AI system’s controllability. Controllability is an important fundamental characteristic
supporting AI systems’ safety for users and other persons.
Automated systems as described in ISO/IEC 22989:2022, Table 1 can potentially use AI. The degree of
external control or controllability is an important characteristic of automated systems. Heteronomous
systems range over a spectrum from no external control to direct control. The degree of external control
or controllability can be used to guide or manipulate systems at various levels of automation. This can be
satisfied by the use of controllability features (see Clause 7) or by taking specific preventive actions within
each stage of the AI system life cycle as defined in ISO/IEC 22989:2022, Clause 6. This document refers to the
controllability by a controller, that is a human or another external agent. It describes controllability features
(what and how), but does not presuppose who or what is in charge of the controlling.
Unwanted consequences are possible if an AI system is permitted to make decisions or take actions without
any external intervention, control or oversight. To realize controllability (see Clause 8), key points of system
state observation and state transition are identified. The exact points where transfer of control is enabled
can be considered during the design and implementation of an AI system.
Ideally, the transfer of control for an intervention occurs within reasonable time, space, energy and
complexity limits, with minimal interruption to the AI system and the external agent. Stakeholders can
consider the cost of control transfer (see 6.9) of automated AI systems. Uncertainty during control transfer
can exist on the AI system and the external agent sides. Thus, it is important to carefully design the control
transfer processes to remove, minimize, or mitigate uncertainty (see 6.8) and other undesired consequences.
The effectiveness of control can be tested. Such testing takes into account the design and development of
the control transfer. This calls for principles and approaches for validation and verification of AI systems’
controllability (see Clause 9).

© ISO/IEC 2024 – All rights reserved
vi
Technical Specification ISO/IEC TS 8200:2024(en)
Information technology — Artificial intelligence —
Controllability of automated artificial intelligence systems
1 Scope
This document specifies a basic framework with principles, characteristics and approaches for the
realization and enhancement for automated artificial intelligence (AI) systems’ controllability.
The following areas are covered:
— state observability and state transition;
— control transfer process and cost;
— reaction to uncertainty during control transfer;
— verification and validation approaches.
This document is applicable to all types of organizations (e.g. commercial enterprises, government agencies,
not-for-profit organizations) developing and using AI systems during their whole life cycle.
2 Normative references
The following documents are referred to in the text in such a way that some or all of their content constitutes
requirements of this document. For dated references, only the edition cited applies. For undated references,
the latest edition of the referenced document (including any amendments) applies.
ISO/IEC 22989:2022, Information technology — Artificial intelligence — Artificial intelligence concepts and
terminology
ISO/IEC 23053, Framework for Artificial Intelligence (AI) Systems Using Machine Learning (ML)
3 Terms and definitions
For the purposes of this document, the terms and definitions given in ISO/IEC 22989, ISO/IEC 23053 and the
following apply.
ISO and IEC maintain terminology databases for use in standardization at the following addresses:
— ISO Online browsing platform: available at https:// www .iso .org/ obp
— IEC Electropedia: available at https:// www .electropedia .org/
3.1
ontology
conceptualisation of a domain
[SOURCE: ISO/IEC 5392:2024, 3.9]
3.2
knowledge representation
process that designs and constructs symbolic systems (3.9), rules, frameworks, or other methodologies used
to express knowledge which machines can recognize and process
[SOURCE: ISO/IEC 5392:2024, 3.18]

© ISO/IEC 2024 – All rights reserved
3.3
knowledge computing
process that obtains new knowledge based on existing knowledge and their relationships
[SOURCE: ISO/IEC 5392:2024, 3.28]
3.4
knowledge fusion
process that merges, combines and integrates knowledge from different resources into a coherent form
[SOURCE: ISO/IEC 5392:2024, 3.21]
3.5
control, verb
in engineering, the monitoring of system output to compare with expected output and
taking corrective action when the actual output does not match the expected output
[SOURCE: ISO/IEC/IEEE 24765:2017, 3.846.1]
3.6
controller
authorized human or another external agent that performs a control
Note 1 to entry: A controller interacts with the control points of an AI system.
3.7
disengagement of control
control disengagement
process where a controller (3.6) releases a set of control points (3.16)
3.8
engagement of control
control engagement
process where a controller (3.6) takes over a set of control points (3.16)
Note 1 to entry: Besides taking over a set of control points, an engagement of control can also include a confirmation
about the transfer of control to a controller.
3.9
system
arrangement of parts or elements that together exhibit a stated behaviour or meaning that the individual
constituents do not
Note 1 to entry: A system is sometimes considered as a product or as the services it provides.
Note 2 to entry: In practice, the interpretation of its meaning is frequently clarified by the use of an associative noun
(e.g. aircraft system). Alternatively, the word “system” is substituted simply by a context-dependent synonym (e.g.
aircraft), though this potentially obscures a system's principles perspective.
Note 3 to entry: A complete system includes all of the associated equipment, facilities, material, computer programs,
firmware, technical documentation, services, and personnel required for operations and support to the degree
necessary for self-sufficient use in its intended environment.
[SOURCE: ISO/IEC/IEEE 15288:2023, 3.47]
3.10
system state
state
one of several stages or phases of system operation
Note 1 to entry: A system state is represented by related internal parameters and observable characteristics.
[SOURCE: ISO 21717:2018, 3.3, modified states as state]

© ISO/IEC 2024 – All rights reserved
3.11
system state stability
stable system state
degree to which a system’s parameters and observable characteristics remain invariable during a specified
period of time or another dimension such as space
Note 1 to entry: Invariableness can be defined by means of a variableness tolerance based on business requirements.
Note 2 to entry: When leaving a stable system state, the system’s parameters or observable characteristics change,
regardless of whether the next stable state is safe or unsafe, when the system (3.9) enters an unstable system state.
Note 3 to entry: A system (3.9) can be described as stable, if the system is in a stable state.
3.12
safe state
state (3.10) that does not have or lead to unwanted consequences or loss of control
3.13
unsafe state
state (3.10) that is not a safe state (3.12)
Note 1 to entry: Uncertain states are a subset of unsafe states.
3.14
failure
loss of ability to perform as required
[SOURCE: IEC 60050-192:2015, 192-03-01, modified — notes to entry have been deleted.]
3.15
success
simultaneous achievement by all characteristics of required performance
[SOURCE: ISO 26871:2020, 3.1.62]
3.16
control point
part of the interface of a system (3.9) where controls can be applied
Note 1 to entry: A control point can be a function, physical facility (such as a switch) or a signal receiving subsystem.
3.17
span of control
subset of control points, upon which controls for a specific purpose can be applied
3.18
interface
means of interaction with a component or module
3.19
transfer of control
control transfer
process of the change of the controller (3.6) that performs a control over a system (3.9)
Note 1 to entry: Transfer of control does not entail application of a control, but it is a handover of control points of the
system interface between agents.
Note 2 to entry: Engagement of control and disengagement of control are two fundamental complementary parts of
control transfer.
© ISO/IEC 2024 – All rights reserved
3.20
finite state machine
FSM
computational model consisting of a finite number of states (3.10) and transitions between those states,
possibly with accompanying actions
[SOURCE: ISO/IEC/IEEE 24765:2017, 3.1604]
3.21
system state transition
transition
process in that a system (3.9) changes from one state (3.10) to another state or to the same state
Note 1 to entry: A transition takes place when a condition is satisfied, including an intervention from a controller.
[SOURCE: ISO/IEC 11411:1995, 2.2]
3.22
cost of control
resources spent and associated external effects by performing control over an AI system
Note 1 to entry: Resources include time, space, energy, material and any other consumable items.
Note 2 to entry: External effects include all possible effects and side effects of control, e.g. environment change.
3.23
test completion report
test summary report
report that provides a summary of the testing that was performed
[SOURCE: ISO/IEC/IEEE 29119-1:2022, 3.87]
3.24
process
set of interrelated or interacting activities that transform inputs into outputs
[SOURCE: ISO/IEC/IEEE 15288:2023, 3.27]
3.25
function
defined objective or characteristic action of a system (3.9) or component
[SOURCE: ISO/IEC/IEEE 24765:2017, 3.1677.1]
3.26
functionality
capabilities of the various computational, user interface, input, output, data management, and other features
provided by a product
[SOURCE: ISO/IEC/IEEE 24765:2017, 3.1716.1, modified — Note 1 to entry has been removed.]
3.27
functional safety
part of the overall safety relating to the EUC (Equipment Under Control) and the EUC control system that
depends on the correct functioning of the E/E/PE (Electrical/Electronic/Programmable Electronic) safety-
related systems (3.9) and other risk reduction measures
[SOURCE: IEC 61508-4:2010, 3.1.12]
3.28
system state observation
observation
act of measuring or otherwise determining the value of a property or system (3.9) state

© ISO/IEC 2024 – All rights reserved
3.29
transaction
set of related operations characterized by four properties: atomicity, consistency, isolation and durability
[SOURCE: ISO/IEC TR 10032:2003, 2.65, modified — Note 1 to entry has been removed.]
3.30
atomic operation
operation that is guaranteed to be either performed or not performed
3.31
out of control state
unsafe state (3.13) in which the system (3.9) cannot listen for or execute feasible control instructions
Note 1 to entry: The reasons for out of control state include but are not limited to communication interruption, system
defection, resource limitation and security.
4 Abbreviations
AI artificial intelligence
ML machine learning
5 Overview
5.1 Concept of controllability of an AI system
Controllability is the property of an AI system which allows a controller to intervene in the functioning of the
AI system. The concept of controllability is relevant to the following areas for which International Standards
provide terminology, concepts and approaches for AI systems:
a) AI concepts and terminology: This document inherits the definition of controllability from
ISO/IEC 22989;
b) AI system trustworthiness: ISO/IEC TR 24028 describes controllability as a property of an AI system
that is helpful to establish trust. Controllability as described by ISO/IEC TR 24028 can be achieved by
providing mechanisms by which an operator can take over control from the AI system. ISO/IEC TR 24028
does not provide a definition for controllability. Controllability in this document is used in the same
sense as in ISO/IEC TR 24028. A controller in the context of this document can be a human. This is the
same with the philosophy in ISO/IEC TR 24028. When an AI system is in its operation and monitoring
stage, a human can be in the loop of control, deciding control logics and providing feedback to the system
for further action;
c) AI system quality model: ISO/IEC 25059 describes user controllability as a sub-characteristic of usability.
ISO/IEC 25059 emphasizes the interface of an AI system, which enables the control by a controller, while
the controllability defined in this document is more about the functionalities that allow for control;
d) AI system functional safety: ISO/IEC TR 5469 uses the term control with two different meanings:
1) Control risk: This meaning refers to an iterative process of risk assessment and risk reduction. The
term control belongs to the context of management. This meaning differs from the use of control in
this document;
2) Control equipment: This meaning refers to the control of equipment as well as the needs of control
by equipment that has a certain level of automation. This meaning of control in ISO/IEC TR 5469 is
consistent to the use of control in this document;
[12]
e) AI risk management: ISO/IEC 23894 uses the term control in the context of organization management,
meaning the ability of an organization to influence or restrict certain activities identified to be risk
sources. This meaning is different from the meaning of control or controllability in this document;

© ISO/IEC 2024 – All rights reserved
f) AI system using machine learning: The meaning of control in this document is the same as the meanings
in ISO/IEC 23053, where reinforcement learning is described as an approach to realize control purpose.
In the context of this document, an external agent can make use of reinforcement learning to realize
control logic.
Based on the definition of controllability in ISO/IEC 22989:2022, 3.5.6, an AI system does not control itself
but is controlled by an external agent. In this document, an AI system that has realized controllability
functionalities is regarded as a system of systems. It is composed of a system realizing AI and a system
realizing controllability. The latter is defined as an external agent in ISO/IEC 22989. This concept is applied
in this document.
Controllability can be important for AI systems whose underlying implementation techniques cannot provide
full explainability or verifiable behaviours. Controllability can enhance the system’s trustworthiness,
including its reliability and functional safety.
No matter the automation level of an AI system, controllability of an AI system is important, so an external
agent can ensure that the system behaves as expected and to prevent unwanted outcomes.
The design and implementation of controllability of an AI system can be considered and performed in each
stage of the AI system life cycle defined in ISO/IEC 22989:2022, Clause 6.
Controllability is a technical prerequisite of human oversight of an AI system, so that the human-machine
interface can be technically feasible and enabled. The design and implementation of controllability should
be considered and practiced by stakeholders of an AI system that can impact users, the environment and
societies.
Controllability of an AI system can be achieved if the following two conditions are met:
— The system can represent its system states (e.g. internal parameters or observable characteristics) to a
controller such that the controller can control the system.
— The system can accept and execute the control instructions from a controller, which causes system state
transitions.
5.2 System state
In a system, interacting elements can exchange data and cooperate with each other. These interactions can
lead to different sets of values for the system’s internal parameters and consequently can result in different
observable characteristics.
A system can have several different states. The different states of a system can indicate a mapping from the
continuous parameter space to a discrete state space. When designing the different states of a system, at
least the following recommendations apply:
— All states are meaningful to the system’s business logic.
— The duration of a state is sufficient so that tests and specific operations against the state can be made.
— A state is observable by qualified stakeholders, via technical means, such as system logging, debugging
and breakpoints, etc.
— Entry into a state is possible via a set of defined operations on the system.
The states of an AI system can be identified during the design and development stage in the AI system
life cycle as described in ISO/IEC 22989:2022, Figure 3. The identification of the states of an AI system is
important for the implementation of controllability and can therefore affect the trustworthiness of the AI
system. According to the results of the design and development stages, the states of an AI system can be
organized into the following three categories:
— safe and unsafe;
— operating or failing to operate as specified;

© ISO/IEC 2024 – All rights reserved
— any other kind of categorizations meaningful to system operation, test and maintenance.
A system can be in a safe state but fail to operate as specified. A system can also be in an unsafe state yet still
operate as specified. Successful operation does not always correspond to safe states and failure to operate
does not always correspond to unsafe states. Success and failure depend on system design and development
for handling internal transitions within and between safe and unsafe states.
EXAMPLE In a financial service, an AI system is used to evaluate credit applications. The approval operation
against a loan is blocked by the AI system component and consequently failed because of an erroneously predicted
credit repayment risk. Such failure of the AI system to operate as specified does not mean that the system entered into
an unsafe state.
5.3 System state transition
5.3.1 Target of system state transition
The system state transition target is a finite subset of the system’s possible states which are acceptable
by stakeholders according to a set of requirements. The system state transition target should be identified
during design and development and the transitions to a target state should be subject to verification and
validation during system testing.
The implementation and enhancement of controllability of an AI system depends on the ability of an AI
system to reach a specified target state. The following attributes of the intended target state should be
identified by the designers, developers, managers, users and any other stakeholders of the AI system:
— Completeness of the states of an AI system can be checked. States that are not noticed or hard to be
entirely identified can exist during the design and development stage. This is particularly the case when
an AI system is implemented by certain approaches, such as deep learning. As a deep learning model's
output universe cannot be entirely determined in advance, unidentified states can always exist;
— Stability of the states of an AI system should meet the requirements about control and state observation.
This attribute is important for the systems which are designed to be controlled by human, as human-in-
the-loop mechanisms are applied to prevent hazards.
5.3.2 Criteria of system state transition
Target states should be reachable under certain circumstances via actions. Actions can include:
— external control via system-defined operations;
— automated state transition by the system itself, if defined conditions are met;
— forced state transition by an external event.
Two types of conditions can be considered for cause system state transition:
— a sufficient condition that by itself causes the transition to take place as long as the condition is met;
— a necessary condition that is required to be met for the state transition to take place.
The satisfaction of a necessary condition does not by itself guarantee the transition happens.
5.3.3 Process of system state transition
Once triggered, a system state transition can occur. AI systems’ state transition processes can differ.
Common subprocesses of a state transition can be identified. A system state transition process contains up
to two subprocesses:
a) Launching: After the condition of a trigger is met, a system can have a set of internal operations
launched according to configurations or implementations of business logic. Such operations can include
invocation of functions, adjustments on system parameters, resources allocation or deallocation, and

© ISO/IEC 2024 – All rights reserved
other actions that the system can take internally in order to reach its defined next state. A launching
subprocess can be brief and difficult to capture or even record, depending on a system’s state definitions
and implementations.
EXAMPLE 1 A deep learning training process completes and the change of model parameters in memory stops.
Based on the training configuration, the persistence of that model can be triggered. Correspondingly, the system’s
state transits from model training to model persisting. For this, necessary functions (e.g. write data to disk) are
invoked and resources (space on disk) are allocated.
b) Adaptation: An AI system state transition can change the environment where that system works in
or objects on which it operates. As a consequence, such environments and objects can react to the AI
system. These reactions can lead to an unstable adaptation period in which the system adjusts internal
parameters to enter an intended state. An adaptation subprocess is not a necessity that every system
state transition process contains.
EXAMPLE 2 An AI-based vehicle system automatically transits its state from low speed to high speed. As the
vehicle speeds up, the resistance (from ground, air, etc.) and running stability can change. To cope with this,
parameters in subsystems (such as electronic stability program) can be adjusted. Once the target state (high
speed) is reached, the adjustment approaches applied in the adaptation subprocess can be stopped.
5.3.4 Effects
The effects of an AI system state transition can include the current state of the system or an additional set of
actions needed to be taken by the system or its controller. There can be two types of effects:
a) For successful state transition: When a system successfully transits to the expected state, the system
can function as specified and is prevented from entering a hazardous state.
b) For unsuccessful state transition: When a system fails to transit to the expected state, it can be guided to
revert to the original state by configured operations or parameters (e.g. system reset). The system can
then retry the requested state transition or stay in the original state. For this, extra time, operations,
power and other resources can be necessary.
5.3.5 Side effects
Side effects can emerge following a system state transition and can lead to the changes to the environment
where a system is operating or to the objects on which the system operates. Not all changes to a system's
environment or objects operated on by a system can be recovered to their original state. The inability to
reverse side effects should be carefully considered when using AI systems in domains such as material
processing and manufacturing.
5.4 Closed-loop and open-loop systems
In a closed-loop system, the output is fed back to the input of the system, where control is determined by
the combination of system input and feedback (e.g. the control to an air conditioner is subject to both the
current and target temperatures). In an open-loop system, the output is not fed back to the input of the
system. Control is subject to the instructions issued by a controller rather than the output of the system (e.g.
a TV only accepts and responds to a control signal rather to the results of previous controls).
System state observation measures the appropriate system parameter values or system appearance. It can
be achieved via either system outputs or observation or based on analysis of system parameters without
output. This document does not treat closed-loop and open-loop separately and does not impose specific
settings to the approaches via which the system states are observed. It also does not impose specific settings
to the approaches via which the system states are observed.

© ISO/IEC 2024 – All rights reserved
6 Characteristics of AI system controllability
6.1 Control over an AI system
Control over an AI system can help to conduct the intended business logic and to prevent the system from
causing harm to stakeholders. At least the following two ways exist to realize the controllability of an AI system:
— Use the facilities designed and implemented for the purpose of control;
— Take advantage of the functional operations (they are not specifically designed and implemented for
control but can be used for the purpose of control).
Control over an AI system is effective if at least the following are satisfied:
— Control is conducted when the system can be controlled for a specific purpose with acceptable side
effects.
— Control is conducted via a correct span of control based on control points provided by the system.
— Control works as intended.
NOTE 1 The span of control represented in the diagram is an example. Each specific control can correspond to its
intended span of control that is configured, selected and used.
[2]
NOTE 2 See ISO/IEC 19505-1 for details on the notations in this diagram. The human body notation in Figure 1
does not mean that it is necessarily a human.
Figure 1 — Use case diagram with examples of an AI system under control

© ISO/IEC 2024 – All rights reserved
Figure 1 shows a use case diagram as an example of an AI system under control:
a) For a specific purpose of control, a controller can observe system states and issue control instructions
to an AI system via a span of control provided by that system. Observations on system states can be
done by the following:
1) A controller invokes functionalities that return parameter values on demand.
2) A controller receives signals sent by the system which contain the information about the current
system state.
3) A controller observes the physical behaviours of the system.
b) An AI system is designed and implemented with interfaces facilitating control and state observation. An
AI system can have multiple components. Each of the components can provide facilities for control (see
6.1) and state observation:
1) Computing resources can include computi
...