Abstract
The insulin pump is a safety-critical embedded medical device used for treatment of type 1 and insulin treated type 2 diabetes. Malfunction of the insulin pump will endanger the user’s life. All countries impose some regulation on the sale and use of medical devices. The purpose of such regulation is to protect the public by imposing standards of safety for medical devices, including insulin pumps. The regulator in the USA, the USA Food and Drug Administration (FDA), actually goes further, and includes efficacy in the regulatory requirement. Until recently, regulatory approval was dependent on process based guidance. However, this has proven to be inadequate in some (most) cases where the device depends on software for its safe and effective operation, and the FDA recently changed its approval process for infusion pumps (including insulin pumps), so that the production of an assurance case that demonstrates that the device is safe and effective is now a strongly suggested regulatory requirement. However the current regulatory guidance does not recommend any particular software development methodology, and does not include definitive guidance on the evaluation component of the certification process. In this paper, we briefly review the related USA regulatory standards for insulin pumps, highlight development and certification challenges, briefly discuss attributes of a safe, secure and dependable insulin pump, and propose an effective certification process for insulin pumps.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Ankrum, T.S., Kromholz, A.H.: Structured Assurance Cases: Three Common Standards. In: HASE 2005: 9th IEEE International Symposium on High-Assurance Systems Engineering, pp. 99–108 (2005)
Associated Press: Insulin Pumps Vulnerable to Hacking, http://www.foxnews.com/tech/2011/08/04/insulin-pumps-vulnerable-to-hacking/
Ayoub, A., Chang, J., Sokolsky, O., Lee, I.: Assessing the Overall Sufficiency of Safety Arguments. In: SSS 2013: 21st Safety-critical Systems Symposium. LNCS. Springer (2013)
Bergenstal, R.M., Tamborlane, W.V., Ahmann, A., Buse, J.B., Dailey, G., Davis, S.N., Joyce, C., Peoples, T., Perkins, B.A., Welsh, J.B., et al.: Effectiveness of Sensor-augmented Insulin-pump Therapy in Type 1 Diabetes. New England Journal of Medicine 363(4), 311–320 (2010)
Black, P.E.: Samate and Evaluating Static Analysis Tools. Ada User Journal 28(3), 184–188 (2007)
Bloomfield, R., Bishop, P.: Safety and Assurance Cases: Past, Present and Possible Future–an Adelard Perspective. In: Making Systems Safer, pp. 51–67. Springer (2010)
Carollo, K.: Can Your Insulin Pump Be Hacked?, http://abcnews.go.com/blogs/health/2012/newline04/10/can-your-insulin-pump-be-hacked/
Dooren, J.C.: FDA Sees Increasing Number Of Insulin Pump Problems, http://online.wsj.com/article/SB10001424052748703862704575099961829258070.html
Eles, C., Lawford, M.: A Tabular Expression Toolbox for Matlab/Simulink. In: Bobaru, M., Havelund, K., Holzmann, G.J., Joshi, R. (eds.) NFM 2011. LNCS, vol. 6617, pp. 494–499. Springer, Heidelberg (2011)
FDA: Analysis of Premarket Review Times Under the 510(k) Program, http://www.fda.gov/AboutFDA/CentersOffices/OfficeofMedicalProductsandTobacco/CDRH/CDRHReports/ucm263385.htm
FDA: Use of Standards in Substantial Equivalence Determinations, http://www.fda.gov/MedicalDevices/DeviceRegulationandGuidance/GuidanceDocuments/ucm073752.htm
FDA: Guidance – General Principles of Software Validation (2002)
FDA: Guidance for the Content of Premarket Submissions for Software Contained in Medical Devices (2005)
FDA: Guidance – Total Product Life Cycle: Infusion Pump-Premarket Notification Submissions [510(k)] Submissions (2010)
Hatcliff, J., Heimdahl, M., Lawford, M., Maibaum, T., Wassyng, A., Wurden, F.: A software certification consortium and its top 9 hurdles. Electronic Notes in Theoretical Computer Science 238(4), 11–17 (2009)
Hawkins, R., Habli, I., Kelly, T., McDermid, J.: Assurance Cases and Prescriptive Software Safety Certification: A Comparative Study. Safety Science 59, 55–71 (2013)
Horowitz, B.T.: Cellnovo’s Cloud System Monitors Diabetes in Real Time, http://www.eweek.com/c/a/Health-Care-IT/Cellnovos-Cloud-System-Monitors-Diabetes-in-Real-Time-520914/
International Electrotechnical Commission: IEC 62304: 2006 Medical Device Software–Software Life Cycle Processes (2006)
Klonoff, D.C., Paul, N.R., Kohno, T.: A Review of the Security of Insulin Pump Infusion Systems. Journal of Diabetes Science and Technology 5(6) (2011)
Leveson, N.: Engineering a Safer World: Applying Systems Thinking to Safety. MIT press (2012)
Maibaum, T., Wassyng, A.: A Product-Focused Approach to Software Certification. Computer 41(2), 91–93 (2008)
NRC: Guidance on Software Reviews for Digital Computer-Based Instrumentation and Control Systems, http://pbadupws.nrc.gov/docs/ML0525/ML052500547.pdf
Parnas, D.L.: On the Criteria to be Used in Decomposing Systems into Modules. Communications of the ACM 15(12), 1053–1058 (1972)
Parnas, D.L., Clements, P.C., Weiss, D.M.: The Modular Structure of Complex Systems. In: 7th International Conference on Software Engineering, pp. 408–417. IEEE (1984)
Parnas, D.L., Madey, J.: Functional documents for computer systems. Science of Computer programming 25(1), 41–61 (1995)
Potti, L.G., Haines, S.T.: Continuous subcutaneous insulin infusion therapy: a primer on insulin pumps. Journal of the American Pharmacists Association 49(1), e1–e17 (2009)
Raghunathan, A., Jha, N.K.: Hijacking an Insulin Pump: Security Attacks and Defenses for a Diabetes Therapy System. In: IEEE 13th International Conference on e-Health Networking, Applications and Services, pp. 150–156. IEEE (2011)
Siebert, C.: Diabetes control and complications trial (DCCT): Results of the feasibility study and design of the full-scale clinical trial. Controlled Clinical Trials 7 (1986)
Stribbell, J.: Model Based Design of a Generic Insulin Infusion Pump. M.Eng. Report, McMaster University (2013)
Sujan, M.-A., Koornneef, F., Voges, U.: Goal-Based Safety Cases for Medical Devices: Opportunities and Challenges. In: Saglietti, F., Oster, N. (eds.) SAFECOMP 2007. LNCS, vol. 4680, pp. 14–27. Springer, Heidelberg (2007)
Wassyng, A., Lawford, M.: Lessons Learned from a Successful Implementation of Formal Methods in an Industrial Project. In: Araki, K., Gnesi, S., Mandrioli, D. (eds.) FME 2003. LNCS, vol. 2805, pp. 133–153. Springer, Heidelberg (2003)
Wassyng, A., Maibaum, T., Lawford, M., Bherer, H.: Software Certification: Is There a Case against Safety Cases? In: Calinescu, R., Jackson, E. (eds.) Monterey Workshop 2010. LNCS, vol. 6662, pp. 206–227. Springer, Heidelberg (2011)
Weinstock, C.B., Goodenough, J.B.: Towards an Assurance Case Practice for Medical Devices. Tech. rep., DTIC Document (2009)
Zhang, Y., Jones, P.L., Klonoff, D.C.: Second insulin pump safety meeting: summary report. Journal of Diabetes Science and Technology 4(2), 488 (2010)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Chen, Y., Lawford, M., Wang, H., Wassyng, A. (2014). Insulin Pump Software Certification. In: Gibbons, J., MacCaull, W. (eds) Foundations of Health Information Engineering and Systems. FHIES 2013. Lecture Notes in Computer Science, vol 8315. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-53956-5_7
Download citation
DOI: https://doi.org/10.1007/978-3-642-53956-5_7
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-53955-8
Online ISBN: 978-3-642-53956-5
eBook Packages: Computer ScienceComputer Science (R0)