ISO 9001 is a generic quality management system (QMS) standard that can be applied to any type of organization. AS9100 is an aerospace QMS standard that includes all of ISO 9001 and then adds aerospace-specific requirements on top.
Core relationship
The key structural difference is:
- ISO 9001: Baseline QMS requirements focused on customer satisfaction, process control, continuous improvement, and risk-based thinking across any industry.
- AS9100: ISO 9001 plus additional clauses and clarifications tailored to aviation, space, and defense, published under the AS91xx family (AS9100 for organizations that design/manufacture, AS9110 for maintenance, AS9120 for distributors).
If you conform to AS9100, you are expected to meet ISO 9001 requirements by definition, but the reverse is not true.
What AS9100 adds beyond ISO 9001
AS9100 builds on ISO 9001 by tightening controls in areas that are high risk for aerospace and defense:
- Product safety and airworthiness focus: Stronger emphasis on safety, reliability, and regulatory obligations specific to aviation, space, and defense products.
- Risk management and operational risk: More explicit requirements for risk assessment, mitigation, and ongoing monitoring, especially around special processes, key characteristics, and critical items.
- Configuration management: Tighter requirements to control configurations, revisions, and traceability of design, manufacturing, and repair data.
- Counterfeit parts prevention: Specific controls to prevent, detect, and respond to counterfeit or suspect parts in the supply chain.
- Special processes and validation: More structure around qualification and control of special processes that cannot be fully verified by subsequent inspection (for example, heat treat, plating, NDI, some composites processes).
- Product realization and planning: Increased rigor in planning product realization, including verification/validation plans, process capability, and first article inspection expectations (often linked to AS9102).
- Supplier oversight and flowdown: Stronger expectations for supplier selection, monitoring, approval, and flowdown of requirements, including regulatory and customer-specific requirements.
- Nonconformance management: More prescriptive treatment of nonconforming product, concessions/deviations, and approvals from the customer or regulatory bodies where applicable.
- Human factors and awareness: Additional emphasis on human factors, awareness of product safety and conformity risks, and prevention of unapproved changes.
Impact on processes and systems
In a practical, brownfield environment with existing MES, ERP, PLM, and QMS systems, the main differences show up as:
- Deeper traceability expectations: AS9100 typically requires tighter genealogy and configuration traceability than many ISO 9001-only implementations. This impacts how you structure routings, travelers, serial/lot control, and change records in existing systems.
- More formal risk and configuration controls: You may need more systematic risk registers, FMEAs, or equivalent, and stronger integration between engineering change control and shop-floor execution.
- Stronger supplier control workflows: Approved supplier lists, supplier performance tracking, and digital evidence of flowdown and verification become more important and are scrutinized in aerospace audits.
- Nonconformance and MRB rigor: AS9100 typically drives more formal NCR, MRB, and corrective action workflows, with clear status, approvals, and records that can be traced across systems.
Neither ISO 9001 nor AS9100 specifies how your IT stack must look. The standards define what must be controlled and evidenced, not how you implement it. Whether you can meet AS9100 with your current systems depends on data integrity, integration quality, and the maturity of your processes and documentation.
Tradeoffs and adoption considerations
- Complexity and overhead: AS9100 adds documentation and control overhead compared to a minimal ISO 9001 system. In regulated aerospace this is usually necessary but still increases audit scope and maintenance effort.
- System change risk: Moving from ISO 9001 to AS9100 rarely justifies a full QMS/MES/ERP replacement. In aerospace, large replacements can fail due to validation burden, downtime risk, integration debt, and long equipment lifecycles. Incremental upgrades and targeted digitization are more realistic.
- Evidence and traceability burden: AS9100 demands more robust, accessible evidence of conformity. This often exposes weaknesses in legacy data models, paper-based travelers, and informal workarounds.
In short, ISO 9001 defines a general-purpose quality management foundation. AS9100 builds on that foundation with aerospace-specific requirements that increase the rigor of risk management, traceability, supplier control, and product safety. Effectiveness, and audit results, depend on how well these requirements are integrated into your existing processes and systems, not on the standard alone.
