< < SU12 : SU13 : TI01 > >

SU13: Personnel Device Maintenance

This service package supports maintenance of ITS personnel devices. Like other device maintenance service packages, this SP is drawn at a high level of abstraction to cover the basic interfaces and functionality associated with maintaining personnel devices. The focus here is on devices that are used by transportation professionals. The maintenance of smart phones, tablets, laptops, and other general purpose devices that are used by travelers is coordinated between the travelers and the providers of the devices and communications services, which is beyond the scope of the architecture.

Relevant Regions: Australia, Canada, European Union, and United States

Enterprise

Development Stage Roles and Relationships

Installation Stage Roles and Relationships

Operations Stage Roles and Relationships
(hide)

Source Destination Role/Relationship
Center Manager Center Manages
Center Manager Center Personnel System Usage Agreement
Center Owner Center Owns
Center Owner Center Manager Operations Agreement
Center Owner Personnel Device Owner Information Exchange Agreement
Center Personnel Center Operates
Center Supplier Center Owner Warranty
Maint and Constr Field Personnel Personnel Device Operates
Personnel Device Manager Maint and Constr Field Personnel System Usage Agreement
Personnel Device Manager Personnel Device Manages
Personnel Device Owner Personnel Device Owns
Personnel Device Owner Personnel Device Manager Operations Agreement
Personnel Device Supplier Personnel Device Owner Warranty
Service Monitor System Manager Service Monitor System Manages
Service Monitor System Owner Center Owner Information Provision Agreement
Service Monitor System Owner Service Monitor System Owns
Service Monitor System Owner Service Monitor System Manager Operations Agreement
Service Monitor System Supplier Service Monitor System Owner Warranty

Maintenance Stage Roles and Relationships

Physical

The physical diagram can be viewed in SVG or PNG format and the current format is SVG.
SVG Diagram
PNG Diagram


Display Legend in SVG or PNG

Includes Physical Objects:

Physical Object Class Description
Center Center This general physical object is used to model core capabilities that are common to any center.
Center Personnel Center 'Center Personnel' represent system operators and other personnel that work within a transportation center. This interface supports modeling of general human interactions that are common to any center.
Maint and Constr Field Personnel Field Represents the people that perform maintenance and construction field activities including vehicle and equipment operators, field supervisory personnel, field crews, and work zone safety personnel. Information flowing from the Maintenance and Construction Field Personnel will include those system inputs specific to maintenance and construction operations, such as information regarding work zone status, or the status of maintenance actions. The field personnel are also monitored within the work zone to enhance work zone safety. Information provided to Maintenance and Construction Field Personnel includes dispatch requests, maintenance and construction actions to be performed, and work zone safety warnings.
Personnel Device Personal 'Personnel Device' represents devices used by emergency personnel or maintenance and construction personnel in the field. In the case of emergency personnel, the devices would include body cameras or smartphones (and their peripherals) that can be used by emergency personnel to provide images or video as well as send or receive data regarding the incident. The devices could also be used for incident scene safety messages to the personnel. In the case of maintenance and construction field personnel, the devices could be cellular phones or specialized safety devices that would be used for work zone safety messages to the personnel.
Service Monitor System Support The 'Service Monitor System' represents one or more center-based systems that provide monitoring, management and control services necessary to other applications and/or devices operating within the Connected Vehicle Environment. These support services enable other applications to provide transportation services.

Includes Functional Objects:

Functional Object Description Physical Object
Center Personal Information Device Management 'Center Personal Information Device Management' is the back office application that supports monitoring and maintenance of Personal Information Devices. Most Personal Information Device management is the province of device manufacturers, service providers, and their clients, which is beyond the scope of an ITS architecture. For roadside safety applications, particularly those that are operated by field personnel working on or close to the right of way, the operating center may manage the devices and the hosted safety applications. For these devices and applications, this functional object monitors the performance and configuration of the devices and installed applications, and the communications links. Center
Personnel Device System Executive 'Personnel Device System Executive' provides the operating system kernel and executive functions that manage the hardware and software configuration and settings, manages installed applications, and manages device resources. It provides device security and governs software installation and upgrade. Personnel Device
Personnel Device System Monitoring and Diagnostics 'Personnel Device Monitoring and Diagnostics' includes background self-tests, diagnostic software, and other hardware and software that monitors the operating condition of a personnel device. The status of the device and diagnostic information is provided to the user and the associated center. Personnel Device
SM Device Management 'SM Device Management' provides the functions necessary to manage devices, including network management, operational status monitoring, and application performance monitoring. Service Monitor System

Includes Information Flows:

Information Flow Description
center operator data Data presented to a center operator. This flow represents general status output and other data that broadly applies to transportation centers.
center operator input Input from a center operator. This flow represents operator input that broadly applies to transportation centers.
personnel device commands System-level control commands issued to personnel devices such as reset and remote diagnostics.
personnel device configuration settings Control settings and parameters that are used to configure personnel devices that are used by transportation professionals.
personnel device fault data Personnel device fault information that can be used to identify personnel devices that require initialization, reconfiguration, repair or replacement. This flow identifies the device, the nature of the fault, and associated error codes and diagnostic data.
personnel device software install/upgrade This flow supports installation and update of software residing in Personnel Devices. It supports download of the software installation files, including executable code and associated support files.
personnel device status Monitoring of Personnel Device status including current mode, operational status, and configuration settings. It includes device housekeeping/heartbeat monitoring and includes network information, the status of installed applications, and the configuration of managed devices.
personnel input Field personnel input to a Personnel Device. This flow may provide input to applications operating on the Personnel Devices. This flow also establishes the settings that tailor each application to suit the user's needs.
personnel updates Alerts and warnings provided to emergency personnel or work crew members. This includes visual, audio, and haptic outputs that may be customized to support individual needs.

Goals and Objectives

Associated Planning Factors and Goals

Planning Factor Goal
H. Emphasize the preservation of the existing transportation system; Maintain the highway infrastructure asset system in a state of good repair

Associated Objective Categories

Objective Category
Preservation: Preserve Existing Infrastructure

Associated Objectives and Performance Measures

Objective Performance Measure
Distressed pavement condition lane-miles not to exceed X percent of total state highway system Distressed pavement condition lane miles
Enhance asset and resource management Extended pavement life due to truck weight enforcement
Enhance asset and resource management Number of assets tracked in real-time
Enhance asset and resource management Percentage of fleet/equipment within lifecycle
Enhance asset and resource management Percentage of geographic jurisdiction covered by agency electronic communications
Enhance asset and resource management Percentage of maintenance activities completed in required time-frame
Enhance asset and resource management Rate at which equipment is utilized
Enhance asset and resource management Vehicle operating costs
Maintain pavement condition index (PCI) of X or greater for local streets and roads Pavement condition index
Percentage of NHS bridges in Good condition to exceed X percent Percentage of NHS bridges in Good condition
Percentage of NHS bridges in Poor condition not to exceed X percent Percentage of NHS bridges in Poor condition
Percentage of pavements in Good condition to exceed X percent of the Interstate System Percentage of pavements in Good condition (Interstate System)
Percentage of pavements in Good condition to exceed X percent of the non-Interstate NHS Percentage of pavements in Good condition (non-Interstate NHS)
Percentage of pavements in Poor condition not to exceed X percent of the Interstate System Percentage of pavements in Poor condition (Interstate System)
Percentage of pavements in Poor condition not to exceed X percent of the non-Interstate NHS Percentage of pavements in Poor condition (non-Interstate NHS)
Reduce commercial vehicle size and weight violations Number of size and weight violations


 
Since the mapping between objectives and service packages is not always straight-forward and often situation-dependent, these mappings should only be used as a starting point. Users should do their own analysis to identify the best service packages for their region.

Needs and Requirements

Need Functional Object Requirement
01 Transportation agencies need to be able to monitor the status of applications running on personal devices and support the installation, reconfiguration, or upgrade of the applications. Center Personal Information Device Management 01 The center shall collect the status and fault data from personal information equipment running applications managed by the center.
02 The center shall be capable of monitoring the performance and configuration of personal information equipment.
03 The center shall be able to provide control commands and configuration updates for personal information devices running applications managed by the center.
Personnel Device System Executive 01 The personal device shall include software operating system kernel and executive functions that manage the overall device software configuration and operation and support configuration management, resource management, and govern software installation and upgrade.
02 The personal device shall allow a center to remotely install or upgrade safety related software in the device.
03 The personal device shall provide the capability for a traveler to update the configuration of safety related software in the device.
Personnel Device System Monitoring and Diagnostics 01 The personal traveler interface shall be able to monitor its operating conditions in order to determine if any operational problems are occurring.
02 The personal device shall be able to perform diagnostic tests in order to determine operational issues being experienced by the device.
03 The personal device shall be able to provide the status data and diagnostic information to the traveler.
04 The personal device shall be able to provide the status data and diagnostic information to remote centers.
SM Device Management 14 The service monitor system shall monitor the status of personal devices.
15 The service monitor system shall notify personal device monitoring transportation centers of any faults detected in the operational status of personal devices.

Related Sources

Document Name Version Publication Date
ITS User Services Document 1/1/2005


Security

In order to participate in this service package, each physical object should meet or exceed the following security levels.

Physical Object Security
Physical Object Confidentiality Integrity Availability Security Class
Center High High Moderate Class 4
Personnel Device High High Moderate Class 4
Service Monitor System Moderate Moderate Moderate Class 2



In order to participate in this service package, each information flow triple should meet or exceed the following security levels.

Information Flow Security
Source Destination Information Flow Confidentiality Integrity Availability
Basis Basis Basis
Center Center Personnel center operator data High High High
Direct interactions between personnel and systems in a backoffice environment are effectively protected by physical means, so long as the interaction is in a dedicated facility. If this interaction is virtual (i.e. ,the center is not directly in front of the Center Personnel, like in a cloud-based system) then the user's input requires some degree of obfuscation depending on sensitivity of information. Given that this could include information about compromised or ineffectual systems, including security systems, the potential for damage is high. Thus, HIGH. Backoffice operations flows should generally be correct and available as these are the primary interface between operators and system. Backoffice operations flows should generally be correct and available as these are the primary interface between operators and system.
Center Personnel Device personnel device commands Moderate Moderate Moderate
Commands could be sensitive and should include authentication data, thus should be MODERATE. Commands to PIDs must be authenticated as having come from a source entitled to issue that command, or roadway equipment may be comprimised. Similarly, commands and configuration must be guaranteed to be correct; not manipulated midstream or corrupted, or the PID may be mis-configured or compromised. The ability to remotely diagnose and configure devices is inherent to their successful operation. If this link is down it either suggests or will prompt field maintenance activity, which has a non-trivial cost and resource impact.
Center Personnel Device personnel device configuration settings Moderate Moderate Moderate
Commands could be sensitive and should include authentication data, thus should be MODERATE. Commands to PID must be authenticated as having come from a source entitled to issue that command, or roadway equipment may be comprimised. Similarly, commands and configuration must be guaranteed to be correct; not manipulated midstream or corrupted, or the roadway equipment may be mis-configured or compromised. The ability to remotely diagnose and configure devices is inherent to their successful operation. If this link is down it either suggests or will prompt field maintenance activity, which has a non-trivial cost and resource impact.
Center Personnel Device personnel device software install/upgrade High High Moderate
PID control, configuration and software/firmware update should all be protected from view. A hostile third party could use this information to reverse engineer control/configuration/update processes, and use that information in an attack across a broad swatch of similar devices, which would have severe effects to the installed base. PID control, configuration and update need to be correct or the PID may be misconfigured, which for some applications could have severe safety impacts. PID control, configuration and update needs to be available; however the availability requirement is probably less than Integrity, as without this flow the PID can continue to operate. The exception would be post-cyber attack, when this flow becomes critical.
Center Personnel Center center operator input High High High
Direct interactions between personnel and systems in a backoffice environment are effectively protected by physical means, so long as the interaction is in a dedicated facility. If this interaction is virtual (i.e. ,the center is not directly in front of the Center Personnel, like in a cloud-based system) then the user's input requires some degree of obfuscation depending on sensitivity of information. Given that this could include information about compromised or ineffectual systems, including security systems, the potential for damage is high. Thus, HIGH. Backoffice operations flows should generally be correct and available as these are the primary interface between operators and system. Backoffice operations flows should generally be correct and available as these are the primary interface between operators and system.
Maint and Constr Field Personnel Personnel Device personnel input Low Moderate Low
Input related to Emergency-related application. There could be sensitive information depending on the application, particularly regarding the health of someone involved in an incident the emergency personnel is responding to, in which case this rating might increase. This data should be correct to enable accurate application functionality, but is likely not critical and easily corrected. There should generally other ways to accomplish this flow.
Personnel Device Center personnel device status Moderate Moderate Low
Will include some sort of identifier for the PID, which could be used in combination with the status and configuration data as a means of identifying the type of PID, or in areas of low penetration the actual PID and the user. Since this is used to monitor the health of the PID, any corruption or modification of this information could lead to unnecessary maintenance activity, or delay necessary such activity. Impact will be limited to the PIDs who's flows were so affected. Unlikely that this needs to be reported often.
Personnel Device Maint and Constr Field Personnel personnel updates Low High Moderate
This data is informing the user of safety-related issues in the local transportation environment. It probably does not contain anything sensitive, and should not matter if another person can observe it. This is the information that is presented to the individual in a work zone or incident response area that may be unpredictable in its formation. If the user receives incorrect information, they may act in an unsafe manner. If this information is not made available to the pedestrian, then the user may be endangered. This is the not only mechanism the user may have to avoid potential dangers (they can observe directly).
Personnel Device Service Monitor System personnel device status Moderate Moderate Low
Will include some sort of identifier for the PID, which could be used in combination with the status and configuration data as a means of identifying the type of PID, or in areas of low penetration the actual PID and the user. Since this is used to monitor the health of the PID, any corruption or modification of this information could lead to unnecessary maintenance activity, or delay necessary such activity. Impact will be limited to the PIDs who's flows were so affected. Unlikely that this needs to be reported often.
Service Monitor System Center personnel device fault data Moderate Moderate Moderate
Device status information should not be viewable by third parties, as those with criminal intent may use this information toward their own ends. If incorrect or changed, could lead to inappropriate maintenance activity, which has a significant cost in itself and contributes negatively to system operational status. Scope is small, but impact significant if this occurs with many instances. A delay in reporting this may cause a delay in necessary maintenance. Considered higher availability requirement than the source flow (RSE status) because this information aggregates many instances of the source.

Standards

Currently, there are no standards associated with the physical objects in this service package. For standards related to interfaces, see the specific information flow triple pages.