Virtual Centre and ADSP
Virtual Centre and ADSP — decoupling ATM data processing from the physical ATC centre to enable cross-border ATS, contingency resilience, and capacity-on-demand
Virtual Centre and ADSP
Definition
The Virtual Centre concept decouples ATM data processing from the physical location of the Air Traffic Control centre. An Air Traffic Service Unit (ATSU) receives processed flight data, surveillance data, and supporting tools from an ATM Data Service Provider (ADSP) that may be located anywhere on the network. The ADSP is a distinct organisational and technical entity that processes real-time ATM data — flight data processing, surveillance fusion, conflict detection, arrival sequencing — on behalf of one or more ATSUs under a Service Level Agreement. The controller working position (CWP) at the ATSU consumes these processed data services without hosting the processing infrastructure locally.
SESAR defines the virtual centre formally as "a single ATSU or a grouping of collaborative ATSUs using data services provided by ATM Data Service Providers (ADSPs), providing geographical decoupling between ADSP(s) and some ATSU(s) through service interfaces defined in Service Level Agreements." ICAO Doc 10057 (ATSEP Training Manual) lists virtual centre (remote CWP) as a training example under the competency element for concepts of virtualisation in ATM (ATSEP.BAS.DPR_1.2.3), confirming it as an ICAO-recognised ATM concept.
Regulatory Basis
The ATS provision framework is Annex 11 (Air Traffic Services), Chapter 2. Standard §2.1.1 establishes that States shall arrange for ATS to be provided, and that by mutual agreement a State may delegate to another State the responsibility for establishing and providing ATS in FIRs, control areas, or control zones over its territory. The Note to §2.1.1 confirms that delegation does not derogate national sovereignty and that the providing State's responsibility is limited to technical and operational considerations. Standard §2.10.2 requires ATC units to be established; it does not prescribe that data processing occur locally. Annex 11, §2.32 and Attachment C mandate contingency plans for disruption of ATS — the virtual centre architecture directly enables cross-site contingency continuity.
In EU law, Commission Implementing Regulation (EU) 2017/373 lays down common requirements for all ATM/ANS providers. It explicitly recognises "data services providers" as a distinct regulated entity class under EASA oversight as the competent authority. The regulation specifies that data services providers and the Network Manager are pan-European, making EASA their competent authority. The ADSP certification pathway became applicable from 1 January 2019.
PANS-IM (Doc 10199, §2.1.4) requires information exchange through services in a service-oriented architecture (SOA), providing the normative SWIM backbone on which virtual centre connectivity rests. Doc 10039 (SWIM Concept) and Doc 10203 (SWIM Service Description) give guidance on the SOA principles.
The EU Airspace Architecture Study (March 2019) — commissioned as input to SES2+ reform — introduced a three-layer service model: ATM data production, ATM data processing, and Air Traffic Services. The ADSP occupies the data processing layer and can be contracted and certified independently of the ANSP delivering the air traffic service.
Operational Meaning
The virtual centre concept separates three previously co-located functions:
- Data service provision: flight data processing, surveillance fusion, conflict detection, sequencing, departure management — performed by the ADSP.
- Air traffic service provision: the controller issuing clearances, managing traffic, and exercising separation responsibility — performed by the ATSU.
- Controller working position: the CWP interface through which the controller accesses ADSP-processed data — which may be at any network-connected location.
This separation enables the following operational scenarios:
Night-time consolidation. A single ADSP serves multiple ATSUs, and low-traffic ATSUs reduce overnight staffing by connecting to a consolidating ATSU without replicating local systems.
Cross-border ATS delegation. One ATSU provides ATS for airspace legally belonging to a neighbouring State by consuming data from an ADSP whose coverage includes the delegated airspace. This is enabled by Annex 11 §2.1.1 delegation and is the primary operational use case for cross-border Single European Sky service consolidation.
Contingency continuity. If a primary control centre is lost, controllers move to a contingency location and reconnect to the same ADSP network, restoring service without replicating local data infrastructure.
Capacity-on-demand. The ADSP's compute resources are scaled to traffic demand, reducing fixed infrastructure costs at each ANSP.
Disaggregated supply chain. ADSPs can be contracted from commercial or cross-border providers and certified independently, unbundling the historically vertically integrated ANSP model.
The COOPANS alliance (Austria, Croatia, Denmark, Ireland, Portugal, and Sweden) demonstrated multi-ADSP, multi-ATSU virtual centre architecture in the EXODUS project, showing inter-vendor interoperability between ATSUs and ADSPs. The iTEC alliance (DFS, ENAIRE, NATS) cooperated with EUROCONTROL on a Flight Object Manager and SWIM node as a building block for multi-centre trajectory data sharing.
Architecture and Service Structure
SESAR identifies three primary delegation architectures:
D architecture. One ADSP delivers services to multiple ATSUs; in a failure scenario, ATSUs switch data provision between ADSPs for resilience. This is the primary contingency model.
Y architecture. One ADSP serves multiple ATSUs with traffic delegation; supports night-time consolidation, fixed-time delegation, and contingency without relocating controllers.
U architecture. Supports delegation between ATSUs where one ATSU covers another's airspace, consuming shared ADSP services.
A further Triangle architecture disaggregates a monolithic ADSP into functionality-oriented ADSPs — separate entities for departure management, arrival sequencing, and conflict detection — with a composed service presented to the ATSU.
The SWIM connectivity layer (PANS-IM Doc 10199; EUROCONTROL SPEC-170 Yellow Profile, Edition 2.0) is the technical fabric for distributing ADSP services across the network. The SWIM Blue Profile (currently in research phase, not yet published) targets very high-availability real-time flight-object exchange between ATC centres and is the candidate profile for intra-virtual-centre communication.
External Sources
- https://www.sesarju.eu/sites/default/files/documents/reports/SESAR_Virtual_Centres_FAQ.pdf - SESAR JU Virtual Centres FAQ — formal definition and architectural options.
- https://www.eurocontrol.int/project/virtual-centre - EUROCONTROL Virtual Centre project page — progress and demos.
- https://www.sesarju.eu/projects/exodus - COOPANS EXODUS project — multi-ANSP virtual centre interoperability demonstration.
- https://eur-lex.europa.eu/eli/reg_impl/2017/373/oj/eng - Commission Implementing Regulation (EU) 2017/373 — ATM/ANS common requirements including data services providers.
- https://www.sesarju.eu/sites/default/files/2019-05/AAS_FINAL_0.pdf - EU Airspace Architecture Study (March 2019) — ADSP three-layer model.
- https://atmmasterplan.eu/services/2480729 - SESAR eATM Portal — MP 3.4.2 layered service delivery element.
- https://transport.ec.europa.eu/document/download/c7472e0b-6dcd-44f3-a43d-a34afb39c6ee_en - European Commission: Legal and economic aspects of ATM data service provision (2019).
References
Annex 11 (Air Traffic Services), Chapter 2, §2.1.1 — States shall provide ATS; by mutual agreement a State may delegate responsibility for ATS in FIRs, control areas or control zones to another State; delegation does not derogate sovereignty.
Annex 11, Chapter 2, §2.10.2 — Air traffic control units shall be established to provide ATC service; no prescription that data processing be co-located with the controlling unit.
Annex 11, Chapter 2, §2.32 and Attachment C — States shall develop contingency plans for disruption of ATS; virtual centre architectures are a key enabler of contingency continuity.
Annex 11, Chapter 3, §3.1 — Responsibility for control of aircraft in a block of airspace vested in a single ATC unit; control may be delegated to other units provided coordination is assured.
Doc 10199 (PANS-IM), Chapter 2, §2.1.4 — Information exchange shall be performed through information services in a service-oriented architecture; underpins SWIM-based ADSP connectivity.
Doc 10057 (ATSEP Training Manual), Module DPR_1.2.3 — Virtual centre (remote CWP — SESAR) cited as a training example under concepts of virtualisation in ATM.
Doc 9854 (Global ATM Operational Concept), Chapter 2, §2.2.3 and §2.1.9 — ATM service delivery seamless across all service providers gate to gate; regional ATM service providers and independent private sector providers recognised as ATM community members.
Commission Implementing Regulation (EU) 2017/373 — Common requirements for ATM/ANS providers; data services providers as a distinct regulated entity class; EASA as competent authority (authoritative source — not in local library; see eur-lex.europa.eu).
EU Airspace Architecture Study (March 2019) — Three-layer service model: ATM data production, ATM data processing (ADSP), Air Traffic Services; ADSP certification framework and capacity-on-demand concept (authoritative source — not in local library; see sesarju.eu).
SESAR ATM Master Plan, element MP 3.4.2 — Layered approach to service delivery; virtual centre as a key element of the Digital European Sky (authoritative source — not in local library; see atmmasterplan.eu).
SESAR Virtual Centres FAQ — Definition of virtual centre and ADSP; D/Y/U/Triangle architectures; delegation models (authoritative source — not in local library; see sesarju.eu).
Related topics
Deep-dive working notes on the Virtual Centre concept and the ATM Data
Service Provider (ADSP) role in aviation/ATM modernisation. This folder
expands the summary in topics/virtual_centre.md into per-aspect files
so each can be read on its own.
Files in this folder
overview.md— what the virtual centre is, where it sits in the ICAO/EASA/SESAR framework, and the conceptual shift it represents.components.md— building blocks: ADSP, ATSU, CWP, SWIM fabric, flight data processing as a service, surveillance data service.blocks.md— maturity arc from monolithic local centre to full capacity-on-demand ADSP market; mermaid evolution diagram.threads.md— the six functional axes: architecture decoupling, ADSP role and certification, SWIM/connectivity, contingency/resilience, cross-border ATS delegation, regulation and economics.modules.md— anatomy of one worked example: an ADSP providing flight data processing to multiple ANSPs and supporting cross-border contingency.enablers.md— CNS/SWIM infrastructure, certification and oversight, legal agreements, training, standardisation.performance_objectives.md— KPA/KPI matrix for virtual centre deployments; performance objectives for cost-effectiveness, capacity, resilience, and interoperability.timeline.md— year-keyed table of key milestones from SESAR 1 VC research to ADSP certification and COOPANS EXODUS.references.md— consolidated ICAO and authoritative external references for this topic.
Reading order
Start with overview.md, then components.md to understand the building
blocks, then threads.md for the functional axes. blocks.md gives the
maturity progression. modules.md is a worked example best read after
the above. enablers.md, performance_objectives.md, timeline.md,
and references.md are reference material for on-demand use.
Source basis
Content is grounded in:
- ICAO Annex 11 (Air Traffic Services), Chapter 2.
- ICAO Doc 10199 (PANS-IM) — SWIM service-oriented architecture.
- ICAO Doc 10057 (ATSEP Training Manual) — virtualisation in ATM.
- ICAO Doc 9854 (Global ATM Operational Concept).
- Commission Implementing Regulation (EU) 2017/373 — ATM/ANS common requirements and the ADSP as a distinct regulated entity.
- EU Airspace Architecture Study (March 2019) — three-layer ADSP model.
- SESAR ATM Master Plan (eATM Portal) — MP 3.4.2 layered service delivery.
- SESAR JU Virtual Centres FAQ and SESAR Solutions (D/Y/U/Triangle architectures).
- COOPANS EXODUS project.
- EUROCONTROL Virtual Centre project and SPEC-170 Yellow Profile.
What the Virtual Centre concept is
The Virtual Centre is the architectural principle of decoupling ATM data processing from the physical location of the Air Traffic Control centre. An Air Traffic Service Unit (ATSU) — an Area Control Centre (ACC), Approach Control Unit, or Aerodrome Control — receives processed flight data, surveillance data, and ATM tool outputs from an ATM Data Service Provider (ADSP) that may be located anywhere on the network. The ADSP is a distinct organisational and technical entity, certified under EU or equivalent national regulatory frameworks, that delivers real-time ATM data services — flight data processing, surveillance fusion, conflict detection, arrival sequencing, departure management — to one or more ATSUs under a Service Level Agreement (SLA).
SESAR's formal definition: "A virtual centre is a single ATSU or a grouping of collaborative ATSUs using data services provided by ATM Data Service Providers (ADSPs), providing geographical decoupling between ADSP(s) and some ATSU(s) through service interfaces defined in Service Level Agreements."
The conceptual shift
Traditional ATM centres are vertically integrated: the same organisation owns the real estate, hosts the data processing systems, employs the controllers, and holds the Air Navigation Service Provider (ANSP) certificate. This bundle limits operational flexibility — capacity is constrained by physical infrastructure, contingency requires full hardware duplication, and cross-border service provision demands either staff relocation or a full new centre.
The virtual centre concept disaggregates the bundle along functional lines:
| Function | Traditional centre | Virtual centre model |
|---|---|---|
| Data processing | Co-located with CWP | Provided by remote ADSP under SLA |
| Controller working position | Fixed in the building | Networked, relocatable |
| ATS provision | Tied to local data system | ATSU; uses any certified ADSP |
| Service continuity | Full hardware duplication needed | Switch ADSP connection; CWP stays |
| Cross-border ATS | Requires new centre or agreement | Extend ADSP coverage; ATSU provides service |
Where it sits in the ICAO/EASA/SESAR framework
ICAO layer. Annex 11, §2.1.1 already allows States to delegate ATS provision to another State, without derogating sovereignty. §2.32 requires contingency plans. Doc 9854 (Global ATM Operational Concept, §2.1.9) foresees independent private-sector and regional ATM service providers. These provisions are the enabling ICAO framework within which the virtual centre concept operates.
SWIM layer. PANS-IM (Doc 10199, §2.1.4) mandates a service-oriented architecture (SOA) for ATM information exchange. The SWIM fabric — Yellow Profile (EUROCONTROL SPEC-170 Edition 2.0) for current operational services; Blue Profile (research phase) targeting very-high-availability real-time centre-to-centre exchange — is the connectivity layer that links ADSP to ATSU.
EU regulatory layer. Commission Implementing Regulation (EU) 2017/373 designates "data services providers" as a distinct regulated entity category under EASA oversight. This is the legal basis for certifying an ADSP independently of the ANSP, opening the market for commercial ADSP provision.
SESAR programme layer. The SESAR ATM Master Plan element MP 3.4.2 ("Layered approach to service delivery") frames the virtual centre as a key element of the Digital European Sky. SESAR Solutions cover the D, Y, U, and Triangle delegation architectures. The COOPANS EXODUS project, under SESAR 3 JU, is the cross-ANSP demonstration for the concept.
Why the virtual centre matters for the wider ATM community
The virtual centre concept unlocks operational patterns that the legacy monolithic-centre model cannot support cost-effectively:
Contingency and resilience. Controllers reconnect to the ADSP network from any location, removing the dependency on a specific building and its infrastructure. Annex 11 contingency obligations (§2.32, Attachment C) become easier to meet.
Cross-border ATS and SES consolidation. The EU's Single European Sky (SES2+) target of reducing airspace fragmentation is operationally enabled by virtual centres: one ATSU can provide ATS across multiple FIRs without duplicating centre infrastructure.
Cost-effectiveness. The ADSP's compute resources are shared across multiple ATSUs and scale to traffic demand, reducing the fixed infrastructure cost per ANSP. The EU Airspace Architecture Study (2019) identified this as a primary lever for ANSP cost reduction.
Standardisation and interoperability. The SESAR D/Y/U architecture framework and SWIM interface standards create vendor-neutral service interfaces, allowing ANSPs to switch ADSPs competitively, analogous to cloud-service procurement in other industries.
Relationship to other topics in this workspace
- SWIM — the information backbone that carries ADSP services to ATSUs; PANS-IM is the normative foundation; SPEC-170 Yellow Profile is the current European interface binding.
- ATFM — virtual centres extend the operational reach of the Network Manager's demand-capacity balancing to cross-border scenarios; an ADSP serving multiple ATSUs simplifies flow management coordination.
- FF-ICE / TBO — flight data processing as a service (ADSP) is a prerequisite for receiving and distributing the FF-ICE shared trajectory; virtual centres are the target ATM system architecture for TBO-B2 and TBO-B3.
- A-CDM — airport-collaborative data including TSAT and TOBT must flow from the aerodrome into the ADSP's flight data processing; virtual centres extend A-CDM integration to remoted control positions.
- AIDC — current inter-centre coordination; virtual centre architecture supersedes bilateral AIDC by replacing it with shared ADSP flight objects, but AIDC remains the operational baseline until virtual centre deployment matures.
References
- Annex 11 (Air Traffic Services), Chapter 2, §2.1.1 — States shall provide ATS; delegation of responsibility to another State by mutual agreement; sovereignty not derogated.
- Annex 11, Chapter 2, §2.32 and Attachment C — Contingency plans for ATS disruption; foundation of virtual centre resilience use case.
- Doc 10199 (PANS-IM), Chapter 2, §2.1.4 — SOA mandate for information exchange; normative basis for SWIM-based ADSP connectivity.
- Doc 9854 (Global ATM Operational Concept), §2.1.9 and §2.2.3 — ATM service delivery seamless across service providers; regional and private-sector ATM service providers recognised.
- Doc 10057 (ATSEP Training Manual), Module ATSEP.BAS.DPR_1.2.3 — Virtual centre (remote CWP) as ICAO-recognised training concept for ATM virtualisation.
- Commission Implementing Regulation (EU) 2017/373 — Data services providers as a distinct regulated entity; EASA competent authority (authoritative source — not in local library; see https://eur-lex.europa.eu/eli/reg_impl/2017/373/oj/eng).
- EU Airspace Architecture Study (2019) — Three-layer ADSP service model; capacity-on-demand framework (authoritative source — not in local library; see https://www.sesarju.eu/sites/default/files/2019-05/AAS_FINAL_0.pdf).
- SESAR Virtual Centres FAQ — Formal SESAR definition of virtual centre and ADSP (authoritative source — not in local library; see https://www.sesarju.eu/sites/default/files/documents/reports/SESAR_Virtual_Centres_FAQ.pdf).
Building blocks of the virtual centre architecture
The virtual centre concept is composed of five distinct layers or building blocks, each with a defined role. The key architectural innovation is that these building blocks are separated from one another by standardised service interfaces rather than bundled inside one system.
Component hierarchy
- Virtual Centre Architecture
- ADSP (ATM Data Service Provider)
- Flight Data Processing Service
- Surveillance Data Fusion Service
- Conflict Detection and Resolution Service
- Arrival Sequencing and Departure Management Services
- ATSU (Air Traffic Service Unit)
- Controller Working Position (CWP)
- Supervisor Position
- SWIM Connectivity Layer
- SWIM Yellow Profile (EUROCONTROL SPEC-170 Ed 2.0)
- SWIM Blue Profile (research phase)
- Service Level Agreement (SLA) Interface
- Regulatory and Certification Framework
- EASA (EU) / ICAO-framework competent authority oversight
- ADSP (ATM Data Service Provider)
ADSP — ATM Data Service Provider
The ADSP is the core new entity introduced by the virtual centre concept. It is an organisation (or shared infrastructure) that provides ATM data services to one or more ATSUs under a Service Level Agreement.
Key characteristics:
- Processes real-time ATM data: flight data processing (FDP), radar and ADS-B/ADS-C surveillance fusion, conflict detection and probing, arrival manager (AMAN), departure manager (DMAN).
- Is geographically decoupled from the ATSU it serves: the ADSP can be in a different building, city, or country.
- Is a distinct regulated entity under Commission Implementing Regulation (EU) 2017/373; subject to certification by EASA as the competent authority (pan-European providers) or national authority (national providers).
- Defines its service interface in an SLA with each ATSU; the interface protocol is SWIM-based.
- Can serve multiple ATSUs simultaneously; one ATSU can also use multiple ADSPs (fail-over resilience).
The Triangle architecture variant further disaggregates the ADSP into specialised providers — a departure-management ADSP, an arrival- sequencing ADSP, and a conflict-detection ADSP — whose composed output is presented through a single service interface to the ATSU.
ATSU — Air Traffic Service Unit
The ATSU is the unit providing air traffic services — ATC, FIS, alerting — to airspace users. In the virtual centre model the ATSU's role is unchanged from its Annex 11 definition: it holds the responsibility for ATS provision and separation, employs or contracts licensed ATCOs, and is accountable to the competent authority.
What changes is that the ATSU need not host local data processing systems. It consumes flight and surveillance data as services from the ADSP. In a delegation scenario (Annex 11 §2.1.1), the ATSU providing ATS may be in a different State from the airspace it is controlling.
Controller Working Position (CWP)
The CWP is the workstation from which an ATCO exercises separation and traffic management. In the virtual centre model, the CWP is networked to the ADSP's data services and can in principle be located anywhere the SWIM connectivity reaches. Display virtualisation (remote display unit technology) allows a CWP to render data from a remote ADSP without requiring a full local copy of the FDPS.
ICAO Doc 10057 (ATSEP Training Manual) includes "display virtualisation (remote display unit)" alongside "virtual centre (remote CWP — SESAR)" as training examples of virtualisation in ATM.
The CWP location independence is the operational enabler for:
- Contingency operations from an alternate site.
- Consolidated overnight control from a single location for multiple ATSUs.
- Cross-border delegation where controllers serve neighbour airspace from their own national facility.
SWIM Connectivity Layer
The SWIM connectivity layer is the technical infrastructure linking ADSP to ATSU. PANS-IM (Doc 10199) mandates that ATM information exchange use a service-oriented architecture (SOA). Two profiles apply:
SWIM Yellow Profile (EUROCONTROL SPEC-170, Edition 2.0, released July 2025) is the operational profile for ATM information exchange. It defines the binding of SWIM services to AMQP and web service protocols. In the virtual centre context, Yellow Profile services carry aeronautical, flight, and flow information between the ADSP and external consumers.
SWIM Blue Profile (research phase; no published specification as of this review) targets very-high-availability, real-time flight-object exchange between ATC centres and is the candidate profile for intra-virtual-centre ADSP-to-ATSU communication at operational latency and reliability. Its deployment-readiness is a key dependency for full virtual centre interoperability.
Service Level Agreement (SLA) Interface
The SLA between ADSP and ATSU is the contractual and technical boundary that defines:
- Performance parameters: system availability, data latency, accuracy, and update rate.
- Security and access controls.
- Failure and fallback procedures.
- Regulatory compliance obligations of each party.
- Audit and oversight provisions.
The SLA replaces the internal technical specification that previously governed data flow within a single vertically-integrated ANSP system. Standardised SLA content is part of the work being progressed under Regulation (EU) 2017/373 and the associated EASA Easy Access Rules.
Regulatory and Certification Framework
EU/EASA layer. Regulation (EU) 2017/373 establishes:
- The ADSP as a named provider category.
- EASA as the competent authority for pan-European data service providers.
- Certification requirements applicable from 1 January 2019.
ICAO framework layer. No ICAO SARPs yet specifically define the ADSP role or its certification. The applicable provisions are the general ATS provision framework in Annex 11, the SWIM SOA mandate in PANS-IM, and the conceptual framing of independent private-sector ATM service providers in Doc 9854.
National layer. Outside the EU, States are expected to develop equivalent oversight frameworks as the virtual centre concept matures. ICAO's ATSEP training provision (Doc 10057) signals the intent that the concept will diffuse globally.
References
- Annex 11 (Air Traffic Services), Chapter 2, §2.1.1 — State ATS provision and inter-State delegation; foundational basis for ATSU scope in virtual centre model.
- Annex 11, Chapter 3, §3.1 — Responsibility for control vested in a single ATC unit; delegation to other units provided coordination assured.
- Doc 10199 (PANS-IM), Chapter 2, §2.1.4 — SOA mandate for information exchange; SWIM Yellow and Blue Profile as interface bindings.
- Doc 10057 (ATSEP Training Manual), ATSEP.BAS.DPR_1.2.3 — Display virtualisation (remote display unit) and virtual centre (remote CWP) as ATM virtualisation training examples.
- Commission Implementing Regulation (EU) 2017/373 — ADSP as a regulated entity; EASA competent authority (authoritative source — not in local library; see https://eur-lex.europa.eu/eli/reg_impl/2017/373/oj/eng).
- SESAR Virtual Centres FAQ — ADSP definition, SLA interface, D/Y/U/Triangle architectures (authoritative source — not in local library; see https://www.sesarju.eu/sites/default/files/documents/reports/SESAR_Virtual_Centres_FAQ.pdf).
- EUROCONTROL SPEC-170, Edition 2.0 — SWIM Yellow Profile specification; operational profile for ADSP-to-ATSU information exchange (authoritative source — not in local library; see https://www.eurocontrol.int/publication/eurocontrol-spec-170-eurocontrol-specification-swim-technical-infrastructure-ti-yellow).
Evolution arc
The virtual centre concept does not follow the ICAO ASBU Block 0–3 cadence directly; instead it has its own maturity arc from the monolithic legacy centre to full capacity-on-demand ADSP provision. The stages below map this arc onto the ASBU framework's approximate timeline where it aligns.
| Stage | Approximate period | Character |
|---|---|---|
| Stage 0 — Monolithic | Pre-2013 | Each centre owns all data processing, CNS, CWPs. No standardised cross-centre interfaces. |
| Stage 1 — Data sharing | 2013–2019 | Centres exchange flight objects via AIDC and early SWIM services; multi-centre cooperation (COOPANS, iTEC) begins. |
| Stage 2 — Virtual centre pilots | 2019–2025 | SESAR VC demonstrations; D/Y/U architectures validated; ADSP certification framework (Reg 2017/373) applicable; COOPANS EXODUS project. |
| Stage 3 — Full ADSP market | 2025+ | Certified ADSPs providing services to multiple ANSPs; competitive or cooperative procurement; capacity-on-demand; cross-border ATS delegation routinely enabled. |
Stage 0 — Monolithic centre (pre-2013)
Character. Each ANSP runs a fully integrated ACC with all data processing, CNS infrastructure, and controller positions on-site. There are no standardised service interfaces to external data providers. Cross- border coordination relies on voice and AFTN strips or bilateral AIDC data links.
Limitations. Capacity is fixed by installed hardware. Contingency requires duplicated infrastructure. Cross-border ATS provision requires physical presence in both States or bilateral negotiation of remote voice procedures. Cost structure is dominated by fixed infrastructure investment at each ATC centre.
Stage 1 — Data sharing between centres (2013–2019, ASBU B0/B1)
Character. Multi-centre data-sharing alliances emerge. COOPANS (Austria, Croatia, Denmark, Ireland, Portugal, Sweden) builds a shared ATM system and centralised infrastructure. iTEC (DFS, ENAIRE, NATS) establishes a common flight data processing framework. EUROCONTROL Maastricht UAC demonstrates consolidated upper-airspace control for multiple States.
SWIM Block 0 services begin (flight, flow, and aeronautical information exchange via FIXM and AIXM). AIDC provides standardised data-link coordination. FF-ICE Block 1 (planning information) extends the horizon. These advances create the information-sharing substrate on which the virtual centre concept will build.
What is missing. Interfaces are point-to-point between specific system pairs, not standardised ADSP-to-ATSU SOA interfaces. There is no legal framework for an independent certified ADSP. Processing remains within alliances, not available as a commercial service.
Stage 2 — Virtual centre pilots and ADSP certification (2019–2025)
Character. SESAR Solutions for D, Y, U, and Triangle architectures are validated at Technical Readiness Level 6 (large-scale demonstration). Regulation (EU) 2017/373 ADSP certification pathway becomes applicable (1 January 2019). The SESAR COOPANS EXODUS project (funded under SESAR 3 JU) establishes a virtual centre across all six COOPANS ANSP members, demonstrating inter-vendor interoperability between ATSUs and ADSPs. The EU Airspace Architecture Study (March 2019) formalises the three-layer model.
Key operational scenarios validated.
- Night-time consolidation: a single ADSP and one consolidating ATSU serving multiple low-traffic ATSUs overnight.
- Contingency: primary ACC lost; controllers reconnect from alternate site to same ADSP network.
- Cross-border delegation (initial): one ATSU providing service to an adjacent delegated sector using a shared ADSP.
Dependencies still maturing. SWIM Blue Profile (high-availability real-time centre-to-centre exchange) remains in research. Common SLA content standards are not yet published. ICAO global SARPs for ADSP do not yet exist.
Stage 3 — Full ADSP market and capacity-on-demand (2025+)
Character. Multiple certified ADSPs offer services competitively or cooperatively to ANSPs. ANSPs procure data services as a commodity, reducing fixed infrastructure investment. Virtual centre architectures support routine cross-border ATS delegation under Annex 11 §2.1.1 agreements. Capacity-on-demand: ADSP compute scales to traffic demand, smoothing the ANSP cost curve. SWIM Blue Profile deployed for high- availability real-time links.
This stage corresponds to the ASBU Block 2/3 information and technology enablers (SWIM-B2, FICE-B2, COMI-B2) being in place and is the target end-state of the SES2+/Digital European Sky reform programme.
Relation to ASBU. The virtual centre concept is not itself an ASBU module but is the target ATM system architecture that enables the following ASBU modules to deliver their full benefit:
FICE-B2(FF-ICE execution information exchange across multiple ATC units using a shared ADSP flight data object).SWIM-B2(full SWIM with policy-based access — the ADSP network transport layer).RATS-B3(remote and virtual aerodrome tower services — a related virtualisation concept for aerodrome control).NOPS-B3(system-wide collaborative network optimisation — requires seamless multi-ADSP data sharing).
Stage dependency principle
Like ASBU, the virtual centre maturity stages are cumulative. Stage 3 ADSP market operation depends on Stage 2 certification frameworks being in place, which in turn depend on the Stage 1 SWIM/data-sharing substrate. Skipping stages — for example, deploying a cross-border ADSP without the SWIM Blue Profile availability guarantees or without a regulatory framework — introduces resilience and safety risks.
References
- Annex 11, Chapter 2, §2.1.1 — Inter-State delegation of ATS; enables cross-border ATSU provision via shared ADSP.
- Doc 10199 (PANS-IM), §2.1.4 — SOA information exchange mandate; normative basis for ADSP connectivity at all stages.
- Commission Implementing Regulation (EU) 2017/373 — ADSP certification framework; Stage 2 gate (authoritative source — not in local library; see https://eur-lex.europa.eu/eli/reg_impl/2017/373/oj/eng).
- EU Airspace Architecture Study (2019) — Three-layer model; capacity-on-demand framing; Stage 3 target state (authoritative source — not in local library; see https://www.sesarju.eu/sites/default/files/2019-05/AAS_FINAL_0.pdf).
- SESAR Solutions: D, Y, U, Triangle architectures — Stage 2 validation (authoritative source — not in local library; see https://www.sesarju.eu/).
- COOPANS EXODUS project — Stage 2 multi-ANSP demonstration (authoritative source — not in local library; see https://www.sesarju.eu/projects/exodus).
Overview of threads
The virtual centre concept spans six functional axes (threads). Each thread addresses a distinct dimension of the problem. Progress on any one thread has dependencies on the others — the concept is a system, not a menu.
The six threads are:
- Architecture decoupling — separating data service provision from ATC provision at the system design level.
- ADSP role and certification — defining what an ADSP is, what it must demonstrate, and who oversees it.
- SWIM and connectivity — providing the standardised, high-availability network that links ADSP to ATSU.
- Contingency and resilience — using virtual centre architecture to meet ATS continuity obligations more cost-effectively.
- Cross-border ATS delegation — enabling one ATSU to provide ATS for another State's airspace using shared ADSP services.
- Regulation and economics — restructuring the economic and oversight model for ATM service provision.
Thread 1 — Architecture decoupling
The core engineering thread. Flight data processing, surveillance data fusion, conflict detection, and arrival/departure sequencing are separated from the CWP and from ATS provision, and exposed as services over standardised SWIM interfaces under an SLA.
Key SESAR work products.
- D architecture: resilient multi-ADSP serving multiple ATSUs; SLA-based failover.
- Y architecture: single ADSP to multiple ATSUs; delegation scenarios.
- U architecture: ATSU-to-ATSU delegation; shared ADSP services.
- Triangle architecture: disaggregated ADSP with specialised child-ADSPs (DMAN-ADSP, AMAN-ADSP, CD-ADSP).
Dependency. Requires SWIM Blue Profile availability for operational- quality latency; Yellow Profile is sufficient for planning-information flows.
Thread 2 — ADSP role and certification
The regulatory and institutional thread that defines the ADSP as a recognised legal and technical entity.
EU framework. Regulation (EU) 2017/373 designates the "data services provider" as a distinct category of ATM/ANS provider, with EASA as competent authority for pan-European providers. EASA's Easy Access Rules for ATM-ANS contain the Acceptable Means of Compliance (AMC) and Guidance Material (GM) for data services providers.
ICAO framing. No dedicated ICAO SARPs for ADSP yet exist. Doc 9854 (§2.1.9) recognises independent private-sector and regional ATM service providers; Doc 10057 includes virtual centre in training material. These are the closest ICAO anchors. A global ICAO ADSP standard is a foreseeable future need as the concept diffuses beyond Europe.
Certification elements. An ADSP applicant must demonstrate:
- Technical capability to provide the contracted ATM data services at the performance levels specified.
- Safety management system meeting Annex 19 / ICAO SMS principles.
- Cybersecurity management (relevant to ICAO Annex 17 / EU Part-IS obligations).
- Continuity and contingency arrangements.
- SLA management and audit compliance.
Thread 3 — SWIM and connectivity
The technical infrastructure thread. The ADSP-to-ATSU link must meet operational ATM performance requirements for latency, availability, and security. SWIM is the standardised information exchange framework.
Current operational level. SWIM Yellow Profile (EUROCONTROL SPEC-170, Edition 2.0, July 2025) provides the operational interface binding for ATM information services over AMQP and web service protocols. It is the current European standard for inter-system ATM information exchange, cited in PANS-IM Doc 10199 §6.2.4 Note 2.
Target operational level. SWIM Blue Profile (research phase; no published specification as of June 2026) is designed for very-high- availability, real-time flight-object exchange between ATC centres. Blue Profile is the target ADSP-to-ATSU link for operational CWP data. Its maturation is the single highest-impact dependency for full virtual centre operational deployment.
Security. The SWIM connectivity layer must satisfy ATM cybersecurity requirements. ICAO Annex 17 §4.9 covers ATM system security; Part-IS (EASA) covers information security in ATM/ANS systems; ATN/IPS (Doc 9896) provides the network substrate.
Thread 4 — Contingency and resilience
The safety-assurance thread. Annex 11 §2.32 and Attachment C require States to develop contingency plans for ATS disruption. The virtual centre model transforms the contingency architecture.
Legacy contingency model. Requires a fully duplicated backup centre with independent data processing systems, CNS infrastructure, and staffing plan. Cost and complexity limit contingency options to major facilities.
Virtual centre contingency model. The ADSP network provides a shared data-processing resource that survives a physical centre loss. Controllers relocate to an alternate CWP site (or work from a contingency ATSU) and reconnect to the same ADSP. The data processing continues uninterrupted; only the controller presence changes location.
SESAR D architecture is specifically designed for this: in a failure scenario, an ATSU switches its data feed from primary ADSP to secondary ADSP without controllers losing their traffic picture.
Outcome. Contingency arrangements meeting Annex 11 §2.32 obligations become feasible for smaller ANSPs that could not afford full hardware duplication under the legacy model.
Thread 5 — Cross-border ATS delegation
The operational-sovereignty thread. Annex 11 §2.1.1 already permits States to delegate ATS provision in their FIRs, control areas, or control zones to another State, by mutual agreement. The virtual centre architecture makes such delegation operationally practical at scale.
Legacy delegation model. Requires the providing ATSU to have full local awareness of the delegated airspace: charts, procedures, tools, and either local surveillance infrastructure or AIDC coordination. Cross-border coordination overhead is high; delegation is used mainly for oceanic and high-seas cases.
Virtual centre delegation model. The ADSP's coverage includes the delegated airspace. The providing ATSU's CWP receives the same processed surveillance, flight data, and tool output for the delegated sector as for its own airspace. Coordination is automatic in the ADSP's flight data processing.
Single European Sky implications. SES2+ reform targets reducing European airspace fragmentation. The EU Airspace Architecture Study (2019) foresaw virtual centres as the enabling technology for cross-border service consolidation and Functional Airspace Blocks, where one ATSU provides service for multiple States' upper airspace.
Note. Delegation of ATS does not transfer sovereignty. The delegating State retains responsibility for airspace design and contingency action (Annex 11 §2.1.1 Note and Attachment C §3.3).
Thread 6 — Regulation and economics
The policy and incentives thread. The virtual centre concept introduces structural changes to the ATM industry economics.
Supply-side change. The ADSP is a separable, potentially competitive service layer. Multiple ADSPs can serve the same ANSP market; ADSPs can be run by commercial entities, ANSP alliances (COOPANS), or network managers. This disaggregation enables:
- Competitive procurement of data services by ANSPs.
- Economy-of-scale effects as one ADSP serves many ATSUs.
- Specialisation: an ADSP optimised for AMAN/DMAN can be procured independently of the general FDP platform.
Demand-side change. ANSPs' fixed infrastructure cost falls as data processing migrates to shared ADSPs. The ADSP's cost structure is variable (scales with traffic), shifting ANSP economics toward a more cloud-like model.
Oversight restructuring. EASA becomes competent authority for pan- European ADSPs under Regulation (EU) 2017/373. National competent authorities oversee national-scope ADSPs. ANSPs retaining SLA management with an external ADSP remain responsible for ATS safety to their national competent authority.
ICAO policy context. Doc 9587 (Policy on Economic Regulation of International Air Transport) addresses ANSP cost-efficiency and incentive design. The ASBU business-case requirement in Doc 9587 applies equally to virtual centre investments: States and ANSPs must demonstrate that moving to a virtual centre architecture delivers the expected cost and performance benefits.
References
- Annex 11, §2.1.1 — Cross-border ATS delegation; sovereignty; Thread 5 foundation.
- Annex 11, §2.32 and Attachment C — Contingency obligations; Thread 4 foundation.
- Doc 10199 (PANS-IM), §2.1.4 — SOA/SWIM mandate; Thread 3 foundation.
- Doc 9854, §2.1.9 — Independent private-sector ATM service providers; Thread 2/6 ICAO framing.
- Doc 9587 — Economic regulation and business-case requirements; Thread 6 context.
- Commission Implementing Regulation (EU) 2017/373 — ADSP certification and EASA oversight; Thread 2/6 foundation (authoritative source — not in local library; see https://eur-lex.europa.eu/eli/reg_impl/2017/373/oj/eng).
- SESAR Virtual Centres FAQ and SESAR Solutions (D/Y/U/Triangle) — Thread 1/4/5 implementations (authoritative source — not in local library; see https://www.sesarju.eu/).
- EU Airspace Architecture Study (2019) — Thread 5/6 economic and delegation framing (authoritative source — not in local library; see https://www.sesarju.eu/sites/default/files/2019-05/AAS_FINAL_0.pdf).
- EUROCONTROL SPEC-170 Edition 2.0 — SWIM Yellow Profile; Thread 3 current operational standard (authoritative source — not in local library; see https://www.eurocontrol.int/).
Anatomy of one strand: ADSP-enabled cross-border contingency
This file works through a single operational scenario end to end — an ADSP providing flight data processing services to two neighbouring ANSPs under a Y-architecture virtual centre, with a contingency case triggered when one ACC loses its primary connectivity.
The scenario is representative of the SESAR COOPANS EXODUS demonstration and the Y-architecture SESAR Solution specification.
Scenario: ANSP-A and ANSP-B share an ADSP under Y architecture
Normal operations
ANSP-A operates ACC Alpha providing ATC in its national upper airspace. ANSP-B operates ACC Bravo providing ATC in the adjacent national upper airspace. Both ATSUs consume flight data processing, surveillance fusion, conflict detection, and AMAN services from a shared ADSP under a Y architecture.
Under the Service Level Agreement:
- The ADSP processes radar and ADS-B returns from both States' CNS infrastructure, fuses them into a single correlated surveillance picture, and streams processed tracks to both ATSUs.
- Flight data objects for all flights — including cross-border flights — are processed in the ADSP's FDP and made available to both ATSUs.
- The AMAN for the main airport in ANSP-A's airspace is computed in the ADSP; ANSP-A's CWPs display the arrival sequence.
- Both ATSUs provide air traffic control under their respective national ANS licences; the ADSP is certified under Regulation (EU) 2017/373 and monitored by EASA.
Coordination between ACC Alpha and ACC Bravo occurs via the ADSP's shared flight object model: both ATSUs have simultaneous access to the full correlated picture, eliminating the legacy AIDC strip coordination.
Night-time consolidation
At 23:00 UTC, traffic in ANSP-B's upper airspace drops below the threshold for independent sector operation. Under the Y-architecture SLA:
- ANSP-B notifies the ADSP that delegation to ANSP-A is active.
- The ADSP reconfigures its flight data sector assignments: flights in ANSP-B's upper sectors are now presented on ACC Alpha's CWPs.
- ACC Alpha controllers assume ATC responsibility for the delegated airspace under the Annex 11 §2.1.1 delegation agreement between the two States.
- ACC Bravo's controller positions are depopulated; one supervisor monitors the delegation.
At 07:00 UTC, traffic resumes and the delegation is reversed.
Contingency scenario: ADSP primary failure
At 03:45 UTC, the primary ADSP loses connectivity to its processing cluster due to a datacentre power fault.
- The ADSP monitoring system detects the failure within the SLA's maximum detection time (typically 30 seconds).
- A failover instruction activates the secondary ADSP, which has been operating in standby with replicated flight data and surveillance.
- Both ATSU's SWIM connections automatically reconnect to the secondary ADSP; the CWP picture is restored within the SLA's maximum recovery time (SLA-defined; target typically 2 minutes for planned contingency).
- During the switchover window, the ATSUs operate on their last known traffic picture and apply increased separation minima consistent with Annex 11 contingency procedures.
- ICAO Annex 11 Attachment C §3.1 obligations are met: the State has developed and published a contingency plan specifying the secondary ADSP as the alternate facility.
Cross-border delegation under Annex 11
The delegation in the night-time consolidation scenario operates under a bilateral agreement between ANSP-A's State and ANSP-B's State, consistent with Annex 11 §2.1.1. Key regulatory points:
- ANSP-B's State retains sovereignty over its airspace. The delegation does not transfer sovereign rights.
- ANSP-A provides ATS in the delegated airspace under its national ATC certificate but within ANSP-B's State's ATS rules and procedures.
- ANSP-B's State remains responsible for the contingency plan for its delegated airspace (Annex 11, Attachment C §3.3).
- The shared ADSP processes both ATSUs' data under a single contract with EASA oversight; each ATSU is separately licensed.
Performance outcomes of this module
| Dimension | Legacy model | Virtual centre module |
|---|---|---|
| Contingency recovery time | 15-60 min (staff relocation) | SLA-bound 2 min (ADSP failover) |
| Night staffing | Full ACC staffed 24/7 | Delegation to neighbour; ANSP-B staff reduction |
| Cross-border coordination | AIDC strip exchange; voice | Shared ADSP flight object; no strip |
| Infrastructure cost | Duplicated per-ANSP | Shared ADSP; per-ANSP SWIM node only |
| Oversight | Two separate national ATM audits | EASA ADSP audit + two national ATSU audits |
Triangle architecture variant: specialist ADSPs
In the Triangle architecture variant of this scenario, the single ADSP is replaced by three specialised child-ADSPs:
- An FDP-ADSP handling flight plan processing, correlations, and flight object management.
- An AMAN-ADSP handling arrival sequencing.
- A DMAN-ADSP handling departure management.
Each child-ADSP exposes a service interface; a composition layer presents a unified feed to the ATSUs. This disaggregation allows each child-ADSP to be procured, updated, and certified independently, and allows one ANSP to use a market-leading AMAN-ADSP while another ANSP uses a different provider for the same function.
References
- Annex 11, Chapter 2, §2.1.1 — Legal basis for inter-State ATS delegation used in night-time consolidation scenario.
- Annex 11, Chapter 2, §2.32 and Attachment C §3.1, §3.3 — Contingency obligations; role of the delegating and providing States.
- Doc 10199 (PANS-IM), Chapter 2, §2.1.4 — SOA/SWIM interface mandate underpinning ADSP-to-ATSU connectivity.
- SESAR Y-architecture SESAR Solution — Delegation scenarios; one-ADSP-to-several-ATSUs configuration (authoritative source — not in local library; see https://www.sesarju.eu/sesar-solutions/y-architecture-supporting-delegation-atm-services-provision-amongst-atsus).
- SESAR D-architecture SESAR Solution — ADSP failover; resilience for contingency scenarios (authoritative source — not in local library; see https://www.sesarju.eu/sesar-solutions/atm-services-delegation-using-d-architecture).
- SESAR Triangle architecture SESAR Solution — Disaggregated specialist ADSPs (authoritative source — not in local library; see https://www.sesarju.eu/sesar-solutions/triangle-architecture-d-man-adsp).
- COOPANS EXODUS — Multi-ANSP cross-vendor virtual centre demonstration (authoritative source — not in local library; see https://www.sesarju.eu/projects/exodus).
- Commission Implementing Regulation (EU) 2017/373 — ADSP certification; EASA competent authority (authoritative source — not in local library; see https://eur-lex.europa.eu/eli/reg_impl/2017/373/oj/eng).
Overview
The virtual centre concept requires a set of enabling conditions that cut across CNS infrastructure, procedures, training, regulation, certification, and institutional arrangements. Unlike a single technology procurement, deploying a virtual centre involves readiness across all of these dimensions simultaneously.
CNS and SWIM infrastructure enablers
SWIM Yellow Profile (operational)
EUROCONTROL SPEC-170, Edition 2.0 (July 2025) is the operational profile for ATM information exchange. It defines AMQP and web service bindings for SWIM services. In the virtual centre context it carries:
- Aeronautical information services from the ADSP to ATSUs.
- Flight information (FIXM-based flight objects).
- Flow management information.
All participating ATSUs and ADSPs must implement compliant SWIM Yellow Profile nodes.
SWIM Blue Profile (target; research phase)
The Blue Profile targets very-high-availability, real-time flight-object exchange between ATC centres, at the latency and reliability levels required for operational CWP data. It is the candidate profile for intra-virtual-centre ADSP-to-ATSU links. As of June 2026 the Blue Profile specification has not been published; its maturation is the single most critical SWIM enabler for full virtual centre deployment.
Surveillance infrastructure
The ADSP requires access to processed or raw surveillance data from radar and ADS-B ground stations in the airspace it covers. For a multi- ANSP ADSP, surveillance data from multiple States must be aggregated and fused. This requires:
- Bilateral or multilateral surveillance data sharing agreements.
- Standardised surveillance data formats (e.g., ASTERIX Category 048 for radar, Category 021 for ADS-B).
- Sufficient coverage quality to meet the ADSP's SLA performance parameters.
Network security (ATN/IPS)
The network linking ADSP to ATSU must meet cybersecurity requirements. ICAO Annex 17 §4.9 covers ATM system security. In the EU, EASA's Part-IS (implementing regulation under Regulation (EU) 2017/373 and related delegated acts) sets information security requirements for ATM/ANS systems. ICAO Doc 9896 (ATN/IPS Manual) provides the network protocol framework.
Procedural enablers
Revised ATS unit operational procedures
ATSUs adopting virtual centre architectures must revise their operational procedures to address:
- Failure modes: detection of ADSP service degradation; transition to contingency mode; recovery procedures.
- Controller protocols for working with shared flight data from a remote ADSP (no local paper strips; full dependence on SWIM-delivered data).
- Coordination procedures for cross-border delegation scenarios.
- Supervision and monitoring of the SLA.
Annex 11, Chapter 2 and PANS-ATM (Doc 4444) remain the procedural foundation; local supplements must cover the new failure modes.
Contingency plans
Annex 11 §2.32 requires States to develop contingency plans. For a virtual-centre-enabled ATSU, the contingency plan must specify:
- The secondary ADSP and the failover procedure.
- The alternate CWP location (for physical centre loss).
- Coordination with adjacent ATSUs and with the affected State (for cross-border delegation).
- Notification to ICAO where contingency involves deviations from the regional air navigation plan (Annex 11, Attachment C §2).
Training enablers
ATCO training
Controllers working with virtual centre CWPs require additional training on:
- Understanding that their flight data comes from a remote ADSP and the implications for system failure mode awareness.
- Contingency procedures specific to ADSP failure and failover.
- Cross-border delegation operations: situational awareness, language, and coordination protocols.
ICAO Doc 9868 (PANS-TRG) and the competency framework for ATCOs (Annex
- provide the baseline training structure; virtual-centre-specific supplements are developed by ANSP training departments.
ATSEP training
ATM Systems Engineering Personnel (ATSEPs) maintaining virtual centre systems require training on:
- ADSP architecture, SWIM service interfaces, and SLA monitoring.
- Virtualisation concepts: display virtualisation, server virtualisation, and their failure modes.
- Cybersecurity in a distributed SWIM-connected architecture.
ICAO Doc 10057 (ATSEP Training Manual) lists virtual centre (remote CWP) and display virtualisation as training items under the data processing module (ATSEP.BAS.DPR_1.2.3), establishing them as ICAO-recognised training subjects.
Regulatory and certification enablers
ADSP certification under Regulation (EU) 2017/373
The primary EU regulatory enabler. An ADSP applicant must:
- Apply for a certificate to EASA (pan-European) or national competent authority (national-scope provider).
- Demonstrate compliance with the technical, safety, and SMS requirements in Regulation (EU) 2017/373 and the EASA Easy Access Rules for ATM-ANS.
- Establish the SLA framework with each ATSU customer.
- Maintain the certificate through ongoing EASA oversight.
Outside the EU, no equivalent ADSP certification framework yet exists. States must rely on Annex 11 general ATS oversight provisions or develop bilateral agreements with EU-certified ADSPs.
ANSP regulatory compliance
The ATSU contracting an ADSP remains the holder of its ATC/ANS certificate and responsible for service safety to its national competent authority. The ATSU must demonstrate that using an external ADSP meets the same safety standards as in-house data processing, and that SLA performance is consistent with safe ATS provision.
Institutional enablers
Bilateral or multilateral ATS delegation agreements
Cross-border ATS delegation scenarios require formal agreements between States under Annex 11 §2.1.1. Such agreements must specify:
- The delegated airspace (FIR, control area, or sector).
- The providing ATSU and the period or conditions of delegation.
- Contingency responsibilities (Annex 11, Attachment C §3.3).
- Financial and oversight arrangements.
The virtual centre architecture enables these agreements to be operationalised more flexibly — including part-time delegation and rapid activation for contingency — than was possible under the legacy model, but the legal agreement between States is still required.
ANSP alliance governance
For ADSP-sharing alliances such as COOPANS, governance arrangements must address:
- Ownership and financing of ADSP infrastructure.
- SLA performance dispute resolution.
- Cybersecurity incident coordination.
- Licence and intellectual property management for ADSP software.
Summary of enabler readiness (as of 2026)
| Enabler | Readiness | Limiting factor |
|---|---|---|
| SWIM Yellow Profile | Operational (SPEC-170 Ed 2.0) | Adoption by all participants |
| SWIM Blue Profile | Research phase | Specification not yet published |
| Surveillance data sharing | Ad hoc bilateral | No multilateral standard |
| ADSP certification (EU) | Framework published (2017/373) | ADSPs still obtaining first certificates |
| ADSP certification (global) | No ICAO SARP yet | ICAO standards work pending |
| Cross-border delegation agreements | Possible under Annex 11 | Bilateral negotiation required |
| ATCO/ATSEP training | Curriculum development phase | Doctrine not yet consolidated |
| ANSP contingency plans (VC) | Partial — major ANSPs progressing | Smaller ANSPs lag |
References
- Annex 11, Chapter 2, §2.32 and Attachment C — Contingency planning obligations; foundation for VC contingency enablers.
- Annex 11, §2.1.1 — Institutional enabler: inter-State delegation agreement basis.
- Doc 10199 (PANS-IM), §2.1.4 and §6.2.4 Note 2 — SWIM SOA mandate; Yellow Profile cited.
- Doc 10057 (ATSEP Training Manual), ATSEP.BAS.DPR_1.2.3 — Virtualisation training; virtual centre and display virtualisation.
- Doc 9868 (PANS-TRG) — ATCO training framework; basis for virtual-centre-specific curriculum additions.
- Commission Implementing Regulation (EU) 2017/373 — ADSP certification framework (authoritative source — not in local library; see https://eur-lex.europa.eu/eli/reg_impl/2017/373/oj/eng).
- EUROCONTROL SPEC-170 Edition 2.0 — SWIM Yellow Profile operational specification (authoritative source — not in local library; see https://www.eurocontrol.int/).
The performance lens
The virtual centre concept must be justified by the performance benefits it delivers. It is not an end in itself — it is an architectural enabler for improvements in cost-effectiveness, capacity, resilience, and interoperability. The ICAO performance framework (Doc 9854 / Doc 9883) provides the Key Performance Areas (KPAs) and Key Performance Indicators (KPIs) against which these benefits are measured.
The primary KPAs for the virtual centre concept are:
- Cost-effectiveness
- Capacity
- Predictability (through service continuity and contingency)
- Interoperability
- Safety (via contingency resilience and continuity of ATS)
The following matrix scores each KPA contribution across the four maturity stages of the virtual centre (1 = some benefit, 2 = clear benefit, 3 = primary driver). A separate descriptive table gives the performance objectives and KPIs per KPA.
KPA contribution by stage
| KPA | Stage 0 | Stage 1 | Stage 2 | Stage 3 |
|---|---|---|---|---|
| Cost-effectiveness | 1 | 1 | 2 | 3 |
| Capacity | 1 | 2 | 2 | 3 |
| Safety | 2 | 2 | 3 | 3 |
| Predictability | 1 | 1 | 2 | 3 |
| Interoperability | 1 | 2 | 3 | 3 |
| Environment | 1 | 1 | 1 | 2 |
| Access and equity | 1 | 1 | 2 | 2 |
Performance objectives and KPIs
| KPA | Performance Objective | Illustrative KPIs | Delivered by |
|---|---|---|---|
| Cost-effectiveness | Reduce per-unit ANSP infrastructure cost through shared ADSP | Unit cost of ATM service per service unit (Doc 9082); ADSP-to-ATSU cost ratio vs. in-house benchmark | ADSP consolidation; Y/U architecture |
| Cost-effectiveness | Enable competitive procurement of ATM data services | Number of certified ADSPs in market; SLA compliance audit rate | Regulation (EU) 2017/373 certification pathway |
| Capacity | Enable on-demand scaling of data processing capacity | Throughput (sectors managed per ADSP instance); ADSP compute utilisation at peak traffic | Stage 3 cloud-native ADSP deployment |
| Capacity | Enable cross-border ATS to fill capacity imbalances | Cross-border sector consolidation events per year; traffic handled by delegating ATSU | D/Y architecture + Annex 11 delegation agreements |
| Safety | Reduce ATS service interruption time | Mean time to restore ATS after ADSP failure (SLA metric); number of unplanned ATS interruptions per year | D architecture failover; contingency plans |
| Safety | Improve contingency coverage for smaller ANSPs | Percentage of ANSPs with tested VC contingency plan meeting Annex 11 §2.32 | VC contingency architecture adoption |
| Predictability | Improve consistency of data service availability | ADSP service availability (SLA — target 99.999% for critical services); data latency distribution | Yellow/Blue Profile SWIM links; redundant ADSP |
| Predictability | Enable night-time consolidation without service degradation | ATFM delay attributable to overnight staffing reduction; CWP reconnection time during delegation | Y architecture delegation procedures |
| Interoperability | Enable vendor-neutral ADSP-to-ATSU interfaces | Number of certified multi-vendor ADSP/ATSU pairs; SWIM Yellow/Blue Profile conformance rate | SESAR Solutions; SWIM Profile deployment |
| Interoperability | Enable shared flight data object across borders | Percentage of cross-border flights with real-time shared ADSP flight object (vs. AIDC strip) | FF-ICE/FICE-B1/B2 integration with ADSP |
| Environment | Reduce physical datacentre footprint per ANSP | Datacentre floor space, power consumption per ANSP (post-ADSP sharing) | ADSP consolidation; shared infrastructure |
KPI measurement context
Cost-effectiveness KPIs
ICAO Doc 9082 (Policies on Charges for Airports and Air Navigation Services) provides the cost-accounting framework. Unit cost of ANS per service unit is the primary financial KPI for ANSP performance review. The EU Performance Scheme (Regulation (EC) No 549/2004 / SES2 and SES2+ successors) requires ANSPs to declare cost-efficiency targets. An ANSP adopting a shared ADSP is expected to demonstrate a reduction in determined costs over the five-year reference period.
Safety and continuity KPIs
The primary SLA metric for safety-critical services is service availability (often expressed as nine-nines targets). ICAO Annex 11 §2.32 and Attachment C set the outcome standard (contingency plans that allow continued ATS provision); the KPI is whether the plan was tested, activated successfully, and met the required recovery timeline.
Interoperability KPIs
SWIM service interoperability is measured by conformance testing against published profiles (EUROCONTROL SPEC-170 for Yellow Profile). The number of ATSUs and ADSPs interconnected via SWIM Yellow Profile nodes, and the proportion of cross-border flight coordination conducted via shared ADSP flight objects rather than AIDC strips, are the key interoperability progress metrics.
How performance is reported
- EU/EUR. EUROCONTROL Performance Review Body reviews ANSP cost-efficiency and capacity performance annually under the EU Performance Scheme. Virtual centre contributions to cost targets will be visible in Reference Period performance reports.
- SESAR programme. SESAR Solutions report Technical Readiness Level (TRL) and quantified performance benefits in solution contextual notes; the eATM Portal tracks these.
- ICAO global. ASBU implementation monitoring reports (GANP review cycle) will eventually capture virtual centre as part of the SWIM-B2 and FICE-B2 implementation track.
References
- Doc 9854 (Global ATM Operational Concept) — Eleven KPAs; performance framework for ATM.
- Doc 9883 (Manual on Global Performance of the Air Navigation System) — KPA definitions, KPI methodology.
- Doc 9082 (Policies on Charges for Airports and Air Navigation Services) — Unit cost accounting; cost-effectiveness measurement.
- Annex 11, §2.32 and Attachment C — Safety/continuity obligation; contingency plan KPI basis.
- Commission Implementing Regulation (EU) 2017/373 — ADSP certification; competitiveness and cost-effectiveness enabler (authoritative source — not in local library; see https://eur-lex.europa.eu/eli/reg_impl/2017/373/oj/eng).
- EU Performance Scheme (Regulation (EC) No 549/2004 and SES2+ successor) — Cost-efficiency KPI reporting for European ANSPs (authoritative source — not in local library; see https://eur-lex.europa.eu/).
- SESAR eATM Portal — Quantified performance benefits for virtual centre SESAR Solutions (authoritative source — not in local library; see https://atmmasterplan.eu/).
Key milestones
The following table traces the principal milestones from early SESAR research on ATM virtualisation through ADSP regulation, demonstration, and projected operational deployment.
| Year | Milestone | Significance |
|---|---|---|
| 2007 | SESAR Joint Undertaking established; SESAR Definition Phase begins | First systematic European research into service-oriented ATM architecture, including virtualisation concepts |
| 2012 | SESAR P06.09.04 virtual centre work initiated | First SESAR project dedicated to separating data service provision from ATC provision; D/Y/U architectures conceptualised |
| 2013 | COOPANS alliance operational (shared ATM system for 6 ANSPs) | First major European multi-ANSP shared infrastructure; precursor data-sharing model for ADSP concept |
| 2014 | SESAR virtual centre concept paper published | Formal SESAR definition of virtual centre and ADSP; three architecture families defined |
| 2016 | SESAR 2020 programme begins; virtual centre in Wave 1 | ADSP concept enters industrial R&D; first live validation exercises at TRL 4/5 |
| 2017 | Commission Implementing Regulation (EU) 2017/373 published | ATM/ANS common requirements including "data services provider" as a distinct regulated entity; EASA named as competent authority |
| 2019 | Regulation (EU) 2017/373 ADSP provisions applicable (1 Jan 2019) | ADSP certification pathway formally open; first ADSP certificates theoretically obtainable |
| 2019 | EU Airspace Architecture Study published (March 2019) | Three-layer service model (data production, data processing/ADSP, ATS) formalised as EU airspace reform vision |
| 2019 | SESAR virtual centre FAQ and D/Y/U architecture solutions published at TRL 5/6 | Large-scale demonstration completed; architecture options validated |
| 2020 | SESAR ATM Master Plan updated (eATM Portal) including MP 3.4.2 | Layered service delivery explicitly included in Master Plan; virtual centre as Digital European Sky element |
| 2021 | SESAR 3 JU established; Digital European Sky programme defined | Virtual centre and ADSP continue as core elements of the SESAR 3 JU work programme |
| 2022 | COOPANS EXODUS project launched under SESAR 3 JU | Full six-ANSP virtual centre demonstration project; cross-vendor interoperability as primary objective |
| 2023 | iTEC and EUROCONTROL MoU for Flight Object Manager and SWIM node | Multi-centre trajectory data sharing via SWIM; building block for virtual centre flight data exchange |
| 2024 | SESAR Triangle architecture SESAR Solution published | Disaggregated specialist-ADSP model validated; DMAN-ADSP as first specialist module |
| 2025 | EUROCONTROL SPEC-170 Edition 2.0 published (July 2025) | Updated SWIM Yellow Profile; operational interface standard for ADSP-to-ATSU services |
| 2025 | COOPANS EXODUS expected TRL 7 milestone | Cross-ANSP virtual centre operationally demonstrated in live environment |
| 2026 | SWIM Blue Profile specification target | High-availability real-time ADSP-to-CWP link specification; critical dependency for full operational deployment |
| 2027+ | First cross-border ATSU-ADSP operational deployments (EUR) | Regulatory and technical prerequisites expected to align; first ANSPs contracted to external ADSPs |
| 2030+ | Capacity-on-demand ADSP market (EU Airspace Architecture Study vision) | Competitive ADSP market; virtual centre routinely used for cross-border ATS and contingency |
Contextual notes
The 2019 inflection point. The combination of Regulation (EU) 2017/373 ADSP provisions becoming applicable, the EU Airspace Architecture Study, and the SESAR D/Y/U architecture validation made 2019 the year when the virtual centre concept moved from research to regulatory and policy reality.
COOPANS and iTEC as proof points. The COOPANS shared-infrastructure model (2013 onwards) demonstrated that multi-ANSP data sharing was operationally viable before the formal virtual centre framework existed. The COOPANS EXODUS project extends this to true ADSP-ATSU separation with cross-vendor interoperability.
SWIM Blue Profile as the critical path. The timeline shows that most technical and regulatory prerequisites are in place, but the SWIM Blue Profile specification — needed for the operational-quality real-time link between ADSP and CWP — remains the single most critical unfulfilled enabler as of 2026.
References
- Commission Implementing Regulation (EU) 2017/373 — Published 1 March 2017; ADSP provisions applicable 1 January 2019 (authoritative source — not in local library; see https://eur-lex.europa.eu/eli/reg_impl/2017/373/oj/eng).
- EU Airspace Architecture Study (March 2019) — Three-layer model milestone (authoritative source — not in local library; see https://www.sesarju.eu/sites/default/files/2019-05/AAS_FINAL_0.pdf).
- SESAR Virtual Centres FAQ — Architecture validation timeline (authoritative source — not in local library; see https://www.sesarju.eu/sites/default/files/documents/reports/SESAR_Virtual_Centres_FAQ.pdf).
- COOPANS EXODUS project — Multi-ANSP demonstration timeline (authoritative source — not in local library; see https://www.sesarju.eu/projects/exodus).
- EUROCONTROL SPEC-170 Edition 2.0 (July 2025) — SWIM Yellow Profile milestone (authoritative source — not in local library; see https://www.eurocontrol.int/).
- SESAR eATM Portal — Current SESAR Solution TRL levels and Master Plan element status (authoritative source — not in local library; see https://atmmasterplan.eu/).
ICAO documents (in local library)
- Annex 11 (Air Traffic Services), Chapter 2 — §2.1.1: inter-State ATS delegation; §2.10.2: ATC units to be established; §2.32 and Attachment C: contingency plans. The normative ICAO ATS provision and delegation framework within which the virtual centre concept operates.
- Annex 11, Chapter 3, §3.1 — Responsibility for control vested in a single ATC unit; control may be delegated to other units.
- Doc 4444 (PANS-ATM) — ATS operational procedures referenced by ATSU operations in a virtual centre environment.
- Doc 9854 (Global ATM Operational Concept) — §2.1.9: regional and private-sector ATM service providers recognised; §2.2.3: seamless ATM service delivery across service providers. Conceptual framing for the ADSP role.
- Doc 9883 (Manual on Global Performance of the Air Navigation System) — KPA definitions and performance management methodology used to justify virtual centre deployment.
- Doc 10057 (ATSEP Training Manual) — ATSEP.BAS.DPR_1.2.3: virtual centre (remote CWP — SESAR) and display virtualisation listed as ATM virtualisation training examples. ICAO recognition of the concept.
- Doc 10199 (PANS-IM) — §2.1.4: information exchange via SOA information services; SOA defined; normative SWIM backbone. §6.2.4 Note 2: EUROCONTROL SPEC-170 cited as interface-binding specification example.
- Doc 10039 (SWIM Concept Manual) — Background on the evolution of information exchange in a service-oriented architecture.
- Doc 10203 (SWIM Service Description Manual) — SOA principles and service description methodology.
- Doc 9082 (Policies on Charges for Airports and Air Navigation Services) — Cost-effectiveness and unit-cost accounting basis for evaluating ADSP adoption.
- Doc 9587 (Policy on Economic Regulation of International Air Transport) — Business-case requirements for ATM infrastructure investments; applicable to ADSP adoption justification.
- Doc 9868 (PANS-TRG) — ATCO training framework; basis for virtual- centre-specific curriculum additions.
- Doc 9896 (Manual on ATN/IPS) — Network protocol foundation for the SWIM connectivity layer linking ADSP to ATSU.
EU/EASA regulations (authoritative — not in local library)
- Commission Implementing Regulation (EU) 2017/373 (1 March 2017) — Common requirements for ATM/ANS providers; data services providers as a distinct regulated entity; EASA as competent authority for pan- European providers; ADSP provisions applicable from 1 January 2019. Official text: https://eur-lex.europa.eu/eli/reg_impl/2017/373/oj/eng
- EASA Easy Access Rules for ATM-ANS (Regulation (EU) 2017/373) — Acceptable Means of Compliance (AMC) and Guidance Material (GM) for ADSP certification. See: https://www.easa.europa.eu/en/document-library/regulations/commission-implementing-regulation-eu-2017373
- EU Airspace Architecture Study (March 2019) — Three-layer service model (ATM data production, ATM data processing/ADSP, Air Traffic Services); capacity-on-demand framework; enabling conditions for ADSP certification market. See: https://www.sesarju.eu/sites/default/files/2019-05/AAS_FINAL_0.pdf
- EU Performance Scheme (Regulation (EC) No 549/2004 and SES2+ successors) — Cost-efficiency KPI reporting for European ANSPs; framework within which ADSP adoption must demonstrate value.
SESAR programme documents (authoritative — not in local library)
- SESAR Virtual Centres FAQ — Formal SESAR definition of virtual centre and ADSP; D/Y/U/Triangle architectures; delegation models; SLA interface. See: https://www.sesarju.eu/sites/default/files/documents/reports/SESAR_Virtual_Centres_FAQ.pdf
- SESAR ATM Master Plan, element MP 3.4.2 — Layered approach to service delivery; virtual centre as a Digital European Sky element. See: https://atmmasterplan.eu/services/2480729
- SESAR Solution: D architecture — ATM services delegation using D architecture; multi-ADSP resilience. See: https://www.sesarju.eu/sesar-solutions/atm-services-delegation-using-d-architecture
- SESAR Solution: Y architecture — One-ADSP-to-several-ATSUs; night-time consolidation and delegation scenarios. See: https://www.sesarju.eu/sesar-solutions/y-architecture-supporting-delegation-atm-services-provision-amongst-atsus
- SESAR Solution: U architecture — ATSU-to-ATSU delegation. See: https://www.sesarju.eu/sesar-solutions/u-architecture-supporting-delegation-atm-services-provision-amongst-atsus
- SESAR Solution: Virtual centre rationalisation — Enabling rationalisation of infrastructure using virtual centre technology. See: https://www.sesarju.eu/sesar-solutions/enabling-rationalisation-infrastructure-using-virtual-centre-based-technology
- SESAR Solution: Triangle architecture (DMAN-ADSP) — Disaggregated specialist ADSPs. See: https://www.sesarju.eu/sesar-solutions/triangle-architecture-d-man-adsp
- COOPANS EXODUS project — Multi-ANSP cross-vendor virtual centre demonstration; SESAR 3 JU funded. See: https://www.sesarju.eu/projects/exodus
EUROCONTROL documents (authoritative — not in local library)
- EUROCONTROL SPEC-170 Edition 2.0 (July 2025) — SWIM Technical Infrastructure Yellow Profile; operational interface-binding specification for ADSP-to-ATSU information exchange; cited in PANS-IM Doc 10199 §6.2.4 Note 2. See: https://www.eurocontrol.int/publication/eurocontrol-spec-170-eurocontrol-specification-swim-technical-infrastructure-ti-yellow
- EUROCONTROL Virtual Centre project page — Progress tracking, news, and demonstration reports. See: https://www.eurocontrol.int/project/virtual-centre
- COOPANS — ANSP alliance operating shared ATM infrastructure; precursor to ADSP model. See: https://www.coopans.com/
European Commission policy documents (authoritative — not in local library)
- Legal and economic aspects of ATM data service provision (2019) — European Commission paper for the 2019 SES High-Level Conference; ADSP market structure and regulatory options. See: https://transport.ec.europa.eu/document/download/c7472e0b-6dcd-44f3-a43d-a34afb39c6ee_en