When Bad Software Can Kill

bhoman writes "A wrist computer that tracks and calculates safe diving times and limits for SCUBA divers had a dangerous software bug that may have been covered up by company executives. This SF Chronicle Article details the problem, product, company, and some of the lawsuits. According to the Chron article, company execs tried to cover up and deny the problem for years, but their official website makes it look like they did a voluntary recall."

I wear an insulin pump

And it has extensive safety measures built into it to prevent insulin over delivery. Obviously, when you put your life in the hands of a machine, you want to make sure it works, and that when it doesn't, you're notified. If a company is guilty of covering up a problem like this, I hope they get sued out of existence and the people guilty spend some time in jail.

Re:I wear an insulin pump

[fidget42]

I know some people will hate to hear this, but, like your insulin pump, maybe these types of devices should be considered medical devices. These things are not simple devides like a heart rate monitor, or bicycle trip computer. When you life is a product's hands you need someone like the FDA looking out for you.

Re:I wear an insulin pump

[CatPieMan]

However, your insulin pump probably has a warning (or the doctor who gave you the instruction on how to use it) that says if you do item A and item B, don't do item C.

As a certified diver (of about a year and a half), I know that they specifically say that you should never go flying less than 12 hours before you take a plane ride (even a small cesna), and, if you do multiple dives you should wait at least 24 hours.

This is not to say that the company was not at fault on this one, but, the divers themselves said that they finished the one dive at 10pm for a flight at 6:30am. I know that the absolute minimum is 4 hours (I did a flying after diving study with DAN), but, this is the limit of the dive tables and should NEVER be approached. All of the major certifying organizations will tell you this.

-CPM

Diving Computers

[aaarrrgggh]

There are two major diving computer companies with "original" systems-- UWATEC and SUUNTO. Uwatec (named in the suit) has been known for less conservative systems; they let a diver stay down longer.

This is attractive to people who do decompression diving, because it means that they don't have to hang out shivering at 5-10m with nothing to see as long at the end of the dive.

Suunto takes a different approach, has a more conservative model, and makes it easier to force your computer to be more conservative still. Most divers don't use that function, because it is contrary to their desire to have maximum bottom time.

Proper diving procedures recommend using two different computers, and always relying on the more conservative unit for your decompression limits. (Assuming that you are doing a computer-only dive and not a table dive.) When your life is at stake, you have to assume that equipment has problems, and act accordingly.

Re:Diving Computers

[skroz]

Agreed. Personally, (and according to PADI recommendations, I believe,) I don't trust computers at all. I have one, yes, but I still trust the tables a whole lot more. Someone recently showed me the wheel, which is apparently easier to screw up than the tables but far more accurate.

Checks and balances. I use the computer to make sure I'm doing the manual calclations correctly, and the manual calculations to keep the computer honest.

Then again, I'm strictly a recreational diver. Pros and semi-pros are a completely different story.

Re:Diving Computers

[lgftsa]

He forgot to mention that the divemaster manually checks everyone's calculations after each dive - and that's after each buddy pair checks each other's calculations first.

You have to remember that it doesn't matter why you're diving - sport, recreation, pro sport, commercial/industrial - it's all happening in a hazardous environment which the human body has no defences against.

What the dive tables[1] represent is a boundary to which most humans can push their bodies and not suffer a critical failure(embolism/bends/nitrogen narcosis[2]). Past that boundary, bad things happen. Some people don't reach that boundary before they happen. An identical stress applied to two people may not affect one person, but kill the other.

[1] Originally created by trial and error(diving and bending) by the US Navy, then becoming more accurate and conservative over time.

[2] NN is akin to getting high - and getting high is *NOT* a good idea when you're at 20m and breathing through a regulator! People who offer their regulators to passing fish, or loose track of time/depth die.

This is not lethal but ...

[Rosco+P.+Coltrane]

I had a friend in the US who underwent LASIK surgery. He told me that his wife, who was computer-savvy, and was watching him being operated on, saw a Win95 box dedicated to controlling the laser and the mount's stepper motors, and that the operator was repeatedly hitting ENTER to make that recurring message box with a red X disappear. She got worried but the surgery was already under way, so she didn't say anything.

Fortunately, his LASIK succeeded. Later on however, he went back to the hospital and asked about the operator's behaviour : the response was "well, we were worried at first, but that error message comes back every five minutes and the machine always works anyway".

Scary ...

Probability of punishment?

[Altima(BoB)]

On the issue of punishing companies for unsafe practices like this, sometimes it's 50/50. Depends how much sway they have. I'm not anti-capitalist über-left cynical jaded moron, but after reading Fast Food Nation recently, I don't have a whole lot of faith in the government's ability to control this kind of activity on a large scale. The government used to have a lot more power over companies since Theodore Roosevelt's time, but the book seems to point the finger at the Reagon era for the change.

Anyway, it wouldn't have been bad PR to admit a mistake, hell it's only human to make mistakes, even when something is as serious as this. The problem shouldn't have been there at all, but it was caught before anyone was hurt, so they should have just apologised and fixed it. Cover-ups make me sick.

MOD PARENT DOWN!

This is slashdot... you have to be an anti-capitalist über-left cynical jaded moron to be here.

Healthcare Software

I have dealth with Healthcare Software for Pharmacy and Lab systems where a delay or missed processing of an order can be fatal to a patient. One thing I found before leaving that industry was that there was a massive migration of these systems from reliable-high uptime servers (VMS, Unix, Mainframe) to Windows client server enviroment. If you think that the Klez virus is bad in a regular office, try working in an enviroment where it brings down a server critical to patient care.

Ethics Lectures

[Poofat]

I've always wondered why the Engineers had to sit through the ethics lectures, and the Comp Sci people didn't. In this day and age, we are relying on automated systems and programs enough so that the people making them should be aware of the consequences of failure.

Missing Dive Equipment: A HyperIntelligent Dolphin

[Nova+Express]

Of course they died, because they were missing the single most important piece of dive safety equipment: A hyperintelligent dolphin with miraculous capabilities of interspecies communication.

Flipper: Ennnhhhhhh! Ennnhhhhhh! (backs up)

Diver: What's that Flipper? There's a software bug in my wrist diving computer that could lead to my grisly death?

Flipper: Ennnhhhhhh! Ennnhhhhhh! (backs up)

Diver: Well thank God you told me! Otherwise I never would have known!

Flipper: Ennnhhhhhh! Ennnhhhhhh! (back up)

Diver: What? There's a Russian sub off the coast?

In short, never go diving without your near-omniscient dolphin.

Blowing it all out of proportion!

[beyonddeath]

ok, I work at a dive shop in Toronto Canada, I am a certified rescue diver. No diver should _EVER_ rely strictly upon a dive computer, they should always have a backup depth and pressure gauge. Not only that but they should plan their dive using Naui or padi (or similar) dive tables and follow their plan. If at that point their computer thinks they can stay longer.. thats good but follow your plan anyway, better safe than sorry! The point is, get trained properly, and use ur brain not a computer to do the thinking.

Re:The main flaw of modern computer science.

[almaw]

Oooooh, you're so wrong!

You can prove the correctness of a bit of code, but it's very hard, takes a long time and is highly skilled work. It becomes especially hard if you're trying to do it with a grammar for any real-world programming language and the code is anything approaching complex. For most real world cases it's simply imppossible.

Mathematical proof of a program's correctness is simply too hard and costs too much money to be applicable in the real world.

If you did a real CompSci course, such as the one I did at Cambridge University, you'll discover that "CS people" are very very far from being "code nerds". I was supervised by a couple of mathematicians for some courses who could code no Java, C++ or Perl (although one of them knew much ML). Proper Computer Science folk are seriously academic and embrace the mathematical side of the field. You can't write an optimising compiler without doing so, to name but one thing.

People don't "ignore this issue" - it's just virtually inapplicable to real world problems. Exteme programming is not "management rubbish". If you'd ever actually read a book about it and tried some of the methodology you'd appreciate that. You forget that the driving force for commerical products is pretty much how much it costs, against the feature set and speed. Provided it doesn't crash very often, that's Good Enough. Unless you're the sort of type who doesn't pay for Windows, I'd suspect most people would rather have a version for $100 that crashes once a month than a version for $1000 that crashes only once a year.

Get down off your pretentious high horse and get a clue.

My favourite story about dangerous bugs...

[sopuli]

The story has been around for a while (core memory...), and I'm not sure whether it's an UL or not, but here goes:

Six or seven years ago, I worked with a fellow with the very British
name of Ken Appleby. He had a Spitfire, I had my '74 B, and we used
to motor out to Pickwick's Pub and throw darts after work on occasion.

Ken used to work for Lucas in the UK, specifically for a division
of Lucas that did military electronics. My favorite of his stories
was about the time he had been working on a computer-controlled
torpedo. It used magnetic core memory to store the programs, which
had the advantage of being very non-volatile as well as not susceptible
to EMP discharge.

So Ken got to ride on the boat for the first test of the torpedo that
used the computer with his program in it. Somewhere out in the North
Sea, on an R. N. cutter, Ken and his crew launched the first ever run
of this new weapon, and Ken learned a new respect for debugging...

The program was supposed to make the torpedo shoot off the boat, dive
to a depth at which it couldn't be easily detected, then circle
toward the target, climb to striking depth, and hit the target. There
were on-board sensors to detect sea level, and the torpedo was supposed
to travel at a preset distance below sea level, with constant feedback
keeping it on track.

Somehow, somewhere, Ken had multiplied one of the 3D coordinates by
a negative number, and this error soon propagated through the
transformation matrix (the mathematical construct that models 3D
space), with predictable results.

Within instants of hitting the water, the torpedo -- instead of
sinking out of visible range -- blasted up and out from the water in
a great silver fountain, then continued skipping across the surface of
the blue like some sort of deranged wingless flying fish. Worse yet,
instead of circling toward the target, it circled all right, but began
to return to the ship that launched it. Fortunately it was not armed,
but they still detonated the self-destruct on it rather than let it
slice through their ship at 50 knots or whatever rate it travelled.
Because of the non-volatile core memory, Ken was able to debug the
program from what the Royal Navy frogmen could recover from it, and
he fixed the problem for Rev 2.0.

But I must admit that the image of the torpedo, splashing happily
above the surface of the water like an aroused porpoise, is one that
returns to me in idle moments such this. What else would a Lucas
torpedo do but try to fly?

Scuba dive the right way

I had a scuba instructor for my first certification, Di Dieter, who had experience diving with Coustou (hope I spelled that right), he also dove the Andrea Doria on several occasions, and basically has been around. I'm sure he's had thousands of dives, perhaps approching or even exceeding the ten thousand mark, under his belt (close to forty years of diving, multiple daily dives, several hundred dives a year, including a grueling dive schedule with Coustou, and he's a dive instructor). He's a no-nonsense guy with a good dose of common sense, and has little patience with screwups.

He did it right. He taught us to dive the navy dive tables, one up, one over, plus a safety margin. This was when the recreational tables had just come out. My friend and I dove for some years after that, and never had a problem. At that time, dive computers were out for a few years, and all the dive shops, through their "train with really expensive gear so you buy it" training programs had all their students diving with computers throughout their training.

Di Dieter did it right. He trained us with the old fashioned, and RELIABLE mechanical guages, waterproof clocks/watches, and tables on waterproof material. No computers.

While computers can extend dive times because you don't spend all your time at maximum depth, you also increase risk in doing so. Whether you decide to use the dive computers or not, you should ALSO have the mechanical pressure and depth guages, and manually calculate your dives.

Solely relying on a computer for diving is sheer stupidity and absolutely reckless. The minimal increase in bottom time is not worth the risk of an embolism, or the bends, which can be a debilitating condition for the rest of your life, or even fatal.

Do it right. Manually calculate your dive, and rely on your brain, not a computer, to stay safe and not risk your life. Bring that fancy computer with you if you want, but don't trust it over basic guages.

And Di, if you're reading this, this is the dude with the 43 lbs of lead on his weight belt! Hope you're still diving. And enjoying life. Peace.