1. International Workshop on National Registers of Radiation Sources
RAIS as an effective system to maintain the National Registry of Sources
International Workshop on National Registers of Radiation Sources
20 to 23 March 2017
Dragan Avramovski
Section of Regulatory Infrastructure and Transport Safety 
Division of Radiation, Transport and Waste Safety
Department of Nuclear Safety and Security

2. What is RAIS? IAEA SAFETY FUNCTIONS to facilitate and to provide for
The Regulatory Authority Information System (RAIS) is a software developed by the IAEA to assist the regulatory bodies in managing their regulatory programme
IAEA SAFETY
FUNCTIONS
to facilitate and
service international
conventions and
other undertakings
to establish
international safety standards
to provide for
the application of the safety standards
RAIS

3. Important aspects of RAIS
RAIS promotes a consistent and common approach to the regulatory control, in accordance with Safety Standards and Code of Conduct
RAIS is customizable to match national regulatory systems

4. Purpose of RAIS RAIS provides for:
Keeping registry/records of regulatory data
Management of regulatory information
Management of regulatory activities
Ideally, RAIS is to be integrated into the regulatory processes, e.g. authorization, inspection, …
For young regulatory bodies, RAIS can be used as a guide for establishing a regulatory program

5. History RAIS 1.0 and RAIS 2.0 late 90’s Lessons learned
completely new design: RAIS 3
RAIS
RAIS 3.0 with SQL Server Extensions 2006
RAIS 3.1 Web
RAIS 3.2 Web
RAIS 3.3 Web
RAIS 3.4 Web
Lessons learned

6. RAIS 3.1 Web A web interface
Require MS SQL Server 2005 (Express) or above
Enhancing the incidents module in RAIS 3.0 by a full-featured module on radiation events
Introduction of functional roles and data roles to improve users’ management

7. RAIS 3.2 Web Require MS SQL Server 2008 R2 (Express) or above
Implementation of enforcement as a regulatory process
Extended implementation of data roles
Introduction of message box restriction and introduction of task assignment to regulatory body staff members
Introduction of specific reports

8. RAIS 3.3 Web Introduction of Web services
Optimized performance (code and pre-selection lists)
Forcing strong password
Enhanced management of files uploaded through RAIS
Bugs fixing

9. RAIS 3.4 Web – Stronger and Faster
Stronger system and data security -
Better protection against hacking
Introduced encryption between the application server and DB server
Faster Data retrieval
In all modules of RAIS
Improved system operation
Enhanced Core functionalities and system responsiveness

10. Improved System Responsiveness
Overall Improvement in the RAIS modules
85%
83%
Query and Statistics
83%
72%
72%
Input-Summary
61%
61%
Selection Filter
Average from 16 different Filter and List masks
Average from 10 different input masks
Average from 44 different Statistics and Reports

11. How to Install / Migrate RAIS 3.4
RAIS 3.4 Installation
RAIS 3.4 Migration
Install RAIS 3.3
RAIS 3.4
Migrate
RAIS 3.1/3.2
RAIS 3.3
RAIS 3.4
Migrate
Migrate

12. RAIS – Scope RAIS is a comprehensive system. Its default scope covers:
Infrastructure information (e.g. country's administrative infrastructure, regulatory body, governmental authorities, laws and regulations …)
Facilities
Radiation sources and associated equipment
Authorization
Inspection
Enforcement
Workers
Additional items: radiation events, occupational exposure, technical services, security aspects
RAIS provides, through its customization mechanisms, for expansion to cover other areas, if of interest to the regulatory body
Inventory of sources 12

13. RAIS in its current look

14. RAIS Features Compatibility with international standards
Customization features
Design features:
Static & Dynamic data
Unique identifiers
Rationality
Hyperlink
Examination of data consistency
Quality management aspects
Data protection
Access control & data confidentiality: Functional role and data role
Online submission of data
Information dissemination to the public
Catalogues included; Connection to ICSRS
What is this slide?

15. Feature: Compatibility with international standards
RAIS is based on international standards and other IAEA publications
For young regulatory bodies, RAIS can be used as a guide for establishing a regulatory program, in accordance with the international standards
Recommendations for the Safe Use and Regulation of Radiation Sources in Industry, Medicine, Research and Teaching
Safety Series No. 102
1990 15

16. Feature: Static vs. Dynamic data
Data related to any item (source, authorization, inspection,…) are split into:
“Details”: data specific to the item. They are time independent (static)
“Status”: data related to the working environment. These data is time dependent (dynamic) and collected in “History” tables Example
For sources: dynamic data facilitates tracking and follow up
For regulatory activities: this approach facilitates the description of regulatory activities as processes
Link to the management system of the regulatory body
Multiple histories possible, e.g. Sealed sources, radiation generators Example

19. Feature: Rationality
Only the minimal set of data is required, which makes the information useful
Those mandatory fields are labelled in red in RAIS interface
Other important data are considered “recommended” or “suggested”, but the system will work if these data is not available

20. Feature: Unique identification
A unique identifier is required for each item. This identifier is called the Regulatory Authority Number (RAN).
The RAN can be related to other national systems, if applicable.
If the regulatory body has an algorithm for assigning the RANs, RAIS offers utility to implement this algorithm and to generate the RAN automatically

21. Feature: Unique identification (Cont’d)
Proper selection of RAN is crucial
Examples of ‘bad’ RANs
auto-generated unique number
Source RAN = serial number
Worker RAN = name or non-durable ID number
Authorization process RAN = date of application receipt
Examples of ‘good’ RANs
proper combination of meaningful information
RANs which are recognized nation-wide, if applicable, e.g.
Facility RAN = registration number
Worker RAN = national number or durable ID number

22. Feature: Hyperlinks Examples:
Regulatory reference documents (legislative texts, regulations, technical references, …)
Applications for authorization
authorization certificates
inspection reports
Source images or technical drawings

23. Customization Features
RAIS is highly customizable to match national regulatory systems
RAIS Customization includes:
Scope
UI (User Interface)
Background functionalities
Reports and data analysis
Regulatory system settings

24. Example: Workers Dose Passport Number

25. Attach documents to process steps

26. Rearranged process steps for Authorization

27. Create custom Reports

28. Customization Features
RAIS customization features open a wide door for its application beyond regulatory activities. For example:
A system for national dose register (Radiation Protection Dosimetry (2011), pp. 1–7, doi: /rpd/ncr368)
A system for radioactive waste management (Radioactive Waste Management register RWMR)
See also: Report of the interregional RAIS workshop, held in Vienna, Dec 2010

29. Feature: Checking of data consistency
Internal data consistency checking. If inconsistency is suspected, a warning appears and the user is requested to make an action
43 consistency tests are included
Additional tests can be added through customization

30. Examining data consistency30
RLA9064/010, 3 – 7 September 2012

31. Access Control & Data Confidentiality
User access control to prevent unauthorized access
User rights are determined by data roles and functional roles
Public area exists; can be customized
Functional role: controls what interface elements, e.g. menus, are accessible and what are the permissions
Data role: controls which data is accessible
For convenience, 5 default combinations of data roles and functional role are predefined as “user types”
Data confidentiality aspects related to network security are the responsibility of the using countries

32. Data Confidentiality: Functional roles

33. Functional Roles
Control which interface elements, e.g. menus, are accessible by a user, and the corresponding access rights.
For example
A user may be given access to the inventory menus but not to the licencing or inspection menus
A member of the public may have read-only access to the public data. Note: By default, statistical data are considered public in RAIS. This ‘public area’ can be customized.

34. Data roles
control the specific data sectors which are accessible by a user.
For example
Health authorities may be given access only to medical facilities
Environmental protection authorities may be given access only to data relevant to discharges
Customs may be given access only to sources involved in import/export and relevant authorizations
Representatives of the facilities can only access their own facility’s data

35. Feature: Online data submission
Authorized representatives of facilities may submit data online
for example, such data may include:
inventory data, periodic audit
application of authorization
Notification of changes in their facilities ….
Submissions are subject to validation by the regulatory authority

36. Validation of online submissions

37. Validation of online submissions

38. Feature: Catalogues included
Catalogue of Manufacturers
Catalogue of radiation generators models
Catalogue of sealed sources models
Catalogue of associated equipment models
Connection to the International Catalogue of Sealed Radioactive Sources (ICSRS)
Lists of relevant data such as nuclides, D-values, ...

39. Feature: multi-lingual
RAIS 3.4 Web interface is multi-lingual
On-the-fly translation mechanism provides for
Translation into other languages
Replacing RAIS 3.4 Web terms by national terms if needed
Terminology used can be context specific
Official UN languages are included

40. Translation

41. RAIS 4.0
A look into the future

42. RAIS 4 | Highlights New User interface Process driven approach
Dynamic data driven approach
Different System modes
Up-to-Date Software Engineering technology
Component based System
Strong Security and great degree of Scalability
Monitoring of the system health

43. RAIS 4 | Process Driven Approach
Revised Regulatory (core) processes that will be included by default in RAIS
Tailor the core processes according to individual needs
Design new processes
Possibility to include Management and Support processes
Export customized process definitions for sharing

44. RAIS 4 | System modes Default Mode Advanced Mode
Intended for system administrators with no advanced technical skills
Advanced Mode
Full capability of RAIS where the administrator has access to every aspect of customization of RAIS

45. IT Skills and RAIS Basic skills Advanced skills
Basic software installation knowledge
Software administration (playing with settings)
Advanced skills
Internet Information Services (IIS)
MS SQL Server Administration (User Permissions, indexes…)
SQL Programming (Function and Procedures)
Windows Server maintenance and configuration

46. IT Skills and the current RAIS
Excellent skills: complicated process implementation and customization
Some skills: Report and statistics adaptation to your needs
No skills: basic RAIS administration and operation

47. IT Skills and RAIS 4.0

48. Thank you for your attention!48
RLA9064/010, 3 – 7 September 2012

49. Thank you!
Thank you!