High-Confidence Medical Device Software Development

Zhihao Jiang, R. Mangharam
{"title":"High-Confidence Medical Device Software Development","authors":"Zhihao Jiang, R. Mangharam","doi":"10.1561/1000000040","DOIUrl":null,"url":null,"abstract":"The design of bug-free and safe medical device software is challenging, especially in complex implantable devices. This is due to the device's closed-loop interaction with the patient's organs, which are stochastic physical environments. The life-critical nature and the lack of existing industry standards to enforce software validation make this an ideal domain for exploring design automation challenges for integrated functional and formal modeling with closed-loop analysis. The primary goal of high-confidence medical device software is to guarantee the device will never drive the patient into an unsafe condition even though we do not have complete understanding of the physiological plant. There are two major differences between modeling physiology and modeling man-made systems: first, physiology is much more complex and less well-understood than man-made systems like cars and airplanes, and spans several scales from the molecular to the entire human body. Secondly, the variability between humans is orders of magnitude larger than that between two cars coming off the assembly line. Using the implantable cardiac pacemaker as an example of closed-loop device, and the heart as the organ to be modeled, we present several of the challenges and early results in model-based device validation. We begin with detailed timed automata model of the pacemaker, based on the specifications and algorithm descriptions from Boston Scientific. For closed-loop evaluation, a real-time Virtual Heart Model VHM has been developed to model the electrophysiological operation of the functioning and malfunctioning i.e., during arrhythmia hearts. By extracting the timing properties of the heart and pacemaker device, we present a methodology to construct timed-automata models for formal model checking and functional testing of the closed-loop system. The VHM's capability of generating clinically-relevant response has been validated for a variety of common arrhythmias. Based on a set of requirements, we describe a framework of Abstraction Trees that allows for interactive and physiologically relevant closed-loop model checking and testing for basic pacemaker device operations such as maintaining the heart rate, atrial-ventricle synchrony and complex conditions such as avoiding pacemaker-mediated tachycardia. Through automatic model translation of abstract models to simulation-based testing and code generation for platform-level testing, this model-based design approach ensures the closed-loop safety properties are retained through the design toolchain and facilitates the development of verified software from verified models. This system is a step toward a validation and testing approach for medical cyber-physical systems with the patient-in-the-loop.","PeriodicalId":42137,"journal":{"name":"Foundations and Trends in Electronic Design Automation","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2015-10-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Foundations and Trends in Electronic Design Automation","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1561/1000000040","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"Computer Science","Score":null,"Total":0}
引用次数: 9

Abstract

The design of bug-free and safe medical device software is challenging, especially in complex implantable devices. This is due to the device's closed-loop interaction with the patient's organs, which are stochastic physical environments. The life-critical nature and the lack of existing industry standards to enforce software validation make this an ideal domain for exploring design automation challenges for integrated functional and formal modeling with closed-loop analysis. The primary goal of high-confidence medical device software is to guarantee the device will never drive the patient into an unsafe condition even though we do not have complete understanding of the physiological plant. There are two major differences between modeling physiology and modeling man-made systems: first, physiology is much more complex and less well-understood than man-made systems like cars and airplanes, and spans several scales from the molecular to the entire human body. Secondly, the variability between humans is orders of magnitude larger than that between two cars coming off the assembly line. Using the implantable cardiac pacemaker as an example of closed-loop device, and the heart as the organ to be modeled, we present several of the challenges and early results in model-based device validation. We begin with detailed timed automata model of the pacemaker, based on the specifications and algorithm descriptions from Boston Scientific. For closed-loop evaluation, a real-time Virtual Heart Model VHM has been developed to model the electrophysiological operation of the functioning and malfunctioning i.e., during arrhythmia hearts. By extracting the timing properties of the heart and pacemaker device, we present a methodology to construct timed-automata models for formal model checking and functional testing of the closed-loop system. The VHM's capability of generating clinically-relevant response has been validated for a variety of common arrhythmias. Based on a set of requirements, we describe a framework of Abstraction Trees that allows for interactive and physiologically relevant closed-loop model checking and testing for basic pacemaker device operations such as maintaining the heart rate, atrial-ventricle synchrony and complex conditions such as avoiding pacemaker-mediated tachycardia. Through automatic model translation of abstract models to simulation-based testing and code generation for platform-level testing, this model-based design approach ensures the closed-loop safety properties are retained through the design toolchain and facilitates the development of verified software from verified models. This system is a step toward a validation and testing approach for medical cyber-physical systems with the patient-in-the-loop.
查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
高可信度医疗设备软件开发
无缺陷和安全的医疗设备软件的设计是具有挑战性的,特别是在复杂的植入式设备。这是由于该设备与患者器官的闭环相互作用,这是随机的物理环境。生命关键的本质和缺乏现有的行业标准来执行软件验证,使得这成为探索设计自动化挑战的理想领域,以集成功能和形式建模与闭环分析。高可信度医疗设备软件的主要目标是,即使我们没有完全了解生理植物,也要保证设备永远不会将患者带入不安全的状态。建模生理学和建模人造系统之间有两个主要的区别:首先,生理学比汽车和飞机等人造系统要复杂得多,也不太容易理解,并且跨越了从分子到整个人体的几个尺度。其次,人与人之间的差异要比下线的两辆汽车之间的差异大几个数量级。以植入式心脏起搏器作为闭环装置的例子,并将心脏作为待建模的器官,我们提出了基于模型的装置验证的几个挑战和早期结果。我们首先详细介绍了起搏器的定时自动机模型,该模型基于波士顿科学公司的规范和算法描述。为了进行闭环评估,开发了实时虚拟心脏模型VHM,以模拟心律失常心脏功能和故障时的电生理操作。通过提取心脏和起搏器装置的定时特性,我们提出了一种构建时间自动机模型的方法,用于闭环系统的形式模型检查和功能测试。VHM产生临床相关反应的能力已被验证用于各种常见的心律失常。基于一组需求,我们描述了一个抽象树框架,该框架允许交互式和生理相关的闭环模型检查和测试基本起搏器设备操作,如维持心率,房室同步和复杂情况,如避免起搏器介导的心动过速。这种基于模型的设计方法通过将抽象模型自动转换为基于仿真的测试,并生成用于平台级测试的代码,确保了闭环安全特性在设计工具链中得以保留,并便于从经过验证的模型开发经过验证的软件。该系统是向医疗信息物理系统的验证和测试方法迈出的一步。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 去求助
来源期刊
Foundations and Trends in Electronic Design Automation
Foundations and Trends in Electronic Design Automation ENGINEERING, ELECTRICAL & ELECTRONIC-
自引率
0.00%
发文量
0
期刊介绍: Foundations and Trends® in Electronic Design Automation publishes survey and tutorial articles in the following topics: - System Level Design - Behavioral Synthesis - Logic Design - Verification - Test - Physical Design - Circuit Level Design - Reconfigurable Systems - Analog Design Each issue of Foundations and Trends® in Electronic Design Automation comprises a 50-100 page monograph written by research leaders in the field.
期刊最新文献
From CNN to DNN Hardware Accelerators: A Survey on Design, Exploration, Simulation, and Frameworks Self-Powered Wearable IoT Devices for Health and Activity Monitoring On-Chip Dynamic Resource Management Contracts for System Design Non-Boolean Computing with Spintronic Devices
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1