Slashdot Mirror

← Back to Stories (view on slashdot.org)

SFLC Wants To Avoid Death by Code

Posted by timothy on from the me-too-me-too dept.

foregather writes "The Software Freedom Law Center has released some independent research on the safety of software close to our hearts: that inside of implantable medical devices like pacemakers and insulin pumps. It turns out that nobody is minding the store at the regulatory level and patients and doctors are blocked from examining the source code keeping them alive. From the article: 'The Food and Drug Administration (FDA) is responsible for evaluating the risks of new devices and monitoring the safety and efficacy of those currently on market. However, the agency is unlikely to scrutinize the software operating on devices during any phase of the regulatory process unless a model that has already been surgically implanted repeatedly malfunctions or is recalled. ... Despite the crucial importance of these devices and the absence of comprehensive federal oversight, medical device software is considered the exclusive property of its manufacturers, meaning neither patients nor their doctors are permitted to access their IMD's source code or test its security.'"

6 of 247 comments (clear)

  1. this is Surprising? by querky · · Score: 5, Insightful

    the software running your pacemaker is probably patented too!

  2. So what by clarkkent09 · · Score: 5, Insightful

    Does a government agency examine the source code which keeps airliners in the air, cars on the road, nuclear plants from blowing up etc etc? If the government is going to evaluate and approve every important piece of code line by line we will pretty soon run out of programmers. But then, chip designs will have to be evaluated too because they can fail as well. Next, mechanical designs, engines, turbines, reactors, better make sure that the government is stocked with experts in all those fields too.

    After all, nothing can possibly be safe until it is certified as such by the government. Just ask hundreds of thousands of people who died while the drugs that could have saved them were waiting for the FDA approval. They are pretty safe now.

    --
    Negative moral value of force outweighs the positive value of good intentions.
    1. Re:So what by QuantumG · · Score: 4, Insightful

      I think you miss the point. You should be able to examine the code in the pacemaker inside you - or hire an expert to do so.

      --
      How we know is more important than what we know.
    2. Re:So what by PopeRatzo · · Score: 4, Insightful

      I don't think code-reviews by bureaucrats is a good option

      Of course not, but presumably the reviews would be done by programmers and analysts who would then report to the FDA.

      When a drug is evaluated for it's safety and effectiveness, it's not "bureaucrats" that are doing the evaluation, it's doctors and pharmacologists and public health specialists.

      When you throw a word like "bureaucrats" around, you make it sound like some clerk from the DMV is going to be doing the evaluation.

      Yes, agencies like the FDA have become bureaucratic clusterfucks of non-progression and end up doing more damage than good.

      Only because the lobbyists who have become the ones writing the regulations prefer it that way. The answer is certainly not to "fix" the bureaucracy by making them even more ineffective. Anyone who tries to reduce the argument to "less government" is trying to do exactly that. I know that's not what you're doing, of course, but there are people who have been misled into believing that the solution to any problem is "less government". However, there are very few examples where deregulation has made a situation better for anyone but a very few.

      --
      You are welcome on my lawn.
  3. Re:Why? by vux984 · · Score: 4, Insightful

    An independent source-code audit could have saved three lives in that case.

    =Could have= saved 3 lives.

    Would have cost 10s of thousands? millions?

    Pretty much every time someone on the planet dies of accidental causes there is some procedure or process that "could" have saved them.

    Life just isn't that safe. And I'd rather not spend every dime of the gdp trying to make it as safe as possible.

    When people die its tragic. If its something simple to fix, we fix it. But lets not lay guilt trip down every time anybody dies. Life is dangerous and it wouldn't be worth living if we made it safe, because the only way it will ever be safe is if we lock everyone up in straight jackets in padded rooms.

  4. Re:How are you alive? by CraftyJack · · Score: 4, Insightful

    in college working towards a MA, aiming towards being a LPC or LSW specializing in substance abuse treatment

    been drinking since I was 14 or so, am now 41.

    I start around 3pm, give or take a little and go until I go to bed, which in many cases is not until 1 or 2am.

    I'm sorry, but I simply can't take you seriously. You're either stretching the truth, or you are a 41 year old student that spends nearly half his day drinking. Either way, you're not credible.