The Fault-Tolerant Insulin Pump Therapy Alfredo Capozucca, Nicolas Guelfi, Patrizio Pelliccione University of Luxembourg Faculty of Sciences, Technologies.

Slides:



Advertisements
Similar presentations
Requirements Engineering Processes – 2
Advertisements

Consensus on Transaction Commit
6.6 The Natural Base, e.
© 2001 Business & Information Systems 2/e1 Chapter 1 Information Systems in Business.
Using the Palm Pilot for Data Collection. Overview: These procedures will assist when using the Palm Pilot for: Physical Inventory Counts Bar Code Collection.
Example 9.4 Estimating the Response to a New Sandwich Confidence Interval for a Proportion.
Grid Checkpoining Architecture Radosław Januszewski CoreGrid Summer School 2007.
1 What is? Structural Equation Modeling (A Very Brief Introduction) Patrick Sturgis University of Surrey.
Real-time software Sommerville, Hfst. 13. Sommerville, Ch. 132 Real-time systems A real-time system is a software system where the correct functioning.
Configuration management
Defect testing Objectives
1 Quality of Service Issues Network design and security Lecture 12.
Mafijul Islam, PhD Software Systems, Electrical and Embedded Systems Advanced Technology & Research Research Issues in Computing Systems: An Automotive.
5.9 + = 10 a)3.6 b)4.1 c)5.3 Question 1: Good Answer!! Well Done!! = 10 Question 1:
ICS 434 Advanced Database Systems
1Computer Graphics Building Models John Shearer Culture Lab – space 2
4/2003 Rev 2 I.2.3 – slide 1 of 15 Session I.2.3 Part I Review of Fundamentals Module 2Basic Physics and Mathematics Used in Radiation Protection Session.
Conal Smith 27 June 2012 Subjective Well-being: what we know and what we need to know.
Network Operations & administration CS 4592 Lecture 15 Instructor: Ibrahim Tariq.
André Augustinus 15 March 2003 DCS Workshop Safety Interlocks.
User-Centred Design: The Design Process (lecture 2)
People Focused, Performance Driven. 1 of 10 Let’s Balance – A Budget Simulation Game.
Array-Based Lists List Length of a list
Synchronization.
Teaser - Introduction to Distributed Computing
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 20 Slide 1 Critical systems development 2.
Chapter 19: Network Management Business Data Communications, 5e.
EECE499 Computers and Nuclear Energy Electrical and Computer Eng Howard University Dr. Charles Kim Fall 2013 Webpage:
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 15 Slide 1 Real-time Systems 2.
Continuous Glucose Monitoring
1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.
AGIL Active Glucose/InsuLin Control System Design Team: Daniel Hewlett Michael Wires Concept: Provide diabetics with continuous blood glucose monitoring.
©Ian Sommerville 2004Software Engineering, 7th edition. Insulin Pump Slide 1 An automated insulin pump.
©Ian Sommerville 2006Critical Systems Slide 1 Critical Systems Engineering l Processes and techniques for developing critical systems.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 10 Slide 1 Critical Systems Specification 3 Formal Specification.
An example of a critical system
Unit 3a Industrial Control Systems
Chapter 1- “Diversity” “In higher education they value diversity of everything except thought.” George Will.
Distributed Control of FACTS Devices Using a Transportation Model Bruce McMillin Computer Science Mariesa Crow Electrical and Computer Engineering University.
Topic 5 – Sensors and Monitoring Systems 1)TechMed scenario covers Sensors and their uses in hospitals In the scenario: “A patient-monitoring system is.
1 Fault Tolerance in the Nonstop Cyclone System By Scott Chan Robert Jardine Presented by Phuc Nguyen.
ROBO M.D. and other subprojects implemented in Innovation 4 Welfare program Dr. Petr Bartoš, Ph.D. University of South Bohemia IFA2012 Faculty of PedagogyMay.
Technology in Health Care By: Brook Niles.  An electronic medical record is a digital and portable version of the current paper file system that would.
Microcontroller-Based Wireless Sensor Networks
 CS 5380 Software Engineering Chapter 8 Testing.
A Proposal of Application Failure Detection and Recovery in the Grid Marian Bubak 1,2, Tomasz Szepieniec 2, Marcin Radecki 2 1 Institute of Computer Science,
Chapter 1 Introduction to Databases. 1-2 Chapter Outline   Common uses of database systems   Meaning of basic terms   Database Applications  
© 2006 Cisco Systems, Inc. All rights reserved.1 Connection 7.0 Serviceability Reports Todd Blaisdell.
Defect resolution  Defect logging  Defect tracking  Consistent defect interpretation and tracking  Timely defect reporting.
RELIABILITY ENGINEERING 28 March 2013 William W. McMillan.
Software Engineering1  Verification: The software should conform to its specification  Validation: The software should do what the user really requires.
Name Of The College & Dept
Wireless Network Management SANDEEP. Network Management Network management is a service that employs a variety of tools, applications, and devices to.
Mutual Exclusion Algorithms. Topics r Defining mutual exclusion r A centralized approach r A distributed approach r An approach assuming an organization.
ARM and GPS Based Transformer monitoring system with area Identification Student Name USN NO Guide Name H.O.D Name Name Of The College & Dept.
An insulin pump. Needle Assembly: Connected to pump. Component used to deliver insulin into the diabetic body.
EEC 688/788 Secure and Dependable Computing Lecture 10 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University
CASE STUDIES * System Engineering, 9th Edition Sommerville.
CompSci 280 S Introduction to Software Development
How SCADA Systems Work?.
Algorithms for Big Data Delivery over the Internet of Things
Rigorous Development Of a Safety-Critical System Based on Coordinated Atomic Actions By Subash M S.
Fault Tolerance Distributed Web-based Systems
Student’s Name with USN No.
EEC 688/788 Secure and Dependable Computing
EEC 688/788 Secure and Dependable Computing
EEC 688/788 Secure and Dependable Computing
Group 13 Mechanical Engineering
Presentation transcript:

The Fault-Tolerant Insulin Pump Therapy Alfredo Capozucca, Nicolas Guelfi, Patrizio Pelliccione University of Luxembourg Faculty of Sciences, Technologies and Communication Software Engineering Competence Center 6, rue Richard Coudenhove-Kalergi L-1359 Luxembourg-Kirchberg LUXEMBOURG

2 Coordinated Atomic Actions Basics facts conceptual framework coordinating complex concurrent activities distributed system achieving fault tolerance by integrating and extending two complementary concepts Conversations cooperative concurrency implement coordinated error recovery Transactions consistency of shared resources in the presence of failures competitive concurrency

3 Coordinated Atomic Actions Why use CAA? CAA, as a design structuring concept, provides support for the following aspects of reliability and safety: Damage confinement Complexity control Fault tolerance Critical condition validation Nesting A. Zorzo, A. Romanovsky, J. Xu, B. Randell, R. Stroud, I. Welch, "Using Coordinated Atomic Actions to Design Complex Safety-Critical Systems: The Production Cell Case Study", Software: Practice & Experience, 29, 7, 1999, 1- 21

4 Case study The Scenario

5 Case study Requirement (1/2) Implementing the technique Continuous Subcutaneous Insulin Injection: Sensors to check the patients status Pumps to administrate insulin Delivering (over 24 hours per day) the right combined amount of two different kinds of insulin Keeping the patients blood glucose

6 Case study Requirement (2/2)

7 Case study Domain knowledge 1.The doctor must set the parameters according to the specific treatment that the patient should receive. 2.This information will be stored in a patients personal record and will be consulted for the application. 3.The emergency room (ER) people are continually monitoring the patients vital signs. 4.Network connection: 1. The dotted arrows represent wireless connection (this allows the patient to move within the access point range). 2. The doctor and the ER have the classic connection. 5.The values of sensors and of the actuator are always transmitted correctly, without any loss or error. 6.All failure on any sensor or actuator is indicated by a specific value, which shows which kind of failure happened. 7.The alarm signal mechanism is free of faults and does not fail.

8 Case study Fault hypothesis (1/3) Sensor stops (E1 or E2): A wearable sensor could not send valid values (special value of the wearable sensor) (1) try again getting the value to continue the cycle (2) delivery stops and the danger alarm will be turned on. Delivery Limit (E3): amount of insulin dropping out of the safe range the delivery is stopped and the danger alarm is turned on. Actuator stops (E4, E6): an actuators sensor has detected a problem before trying to inject the insulin stop the delivery of insulin and start to ring the danger alarm.

9 Case study Fault hypothesis (2/3) Delivery stops (E5, E7): an actuators sensor has detected a problem after the insulin injection try again to deliver the insulin the delivery of insulin will be stopped and the danger alarm will be turned on. Cartridge very low (E4, E5, E6 or E7): the quantity of insulin in a cartridge is less than the low limit set in the cartridge the delivery continues but the warning alarm is turned on. Cartridge empty (E4, E5, E6 or E7): a cartridge of a pump does not have any more insulin stopping the delivery and starting the danger alarm.

10 Case study Fault hypothesis (3/3) Communication lost (E8, E9, E10 or E11): the whole application is distributed by (at least) three different devices => if the communication between some of these devices is dropped (1) the cycle will be completed using the values collected in the previous step of the cycle. (2) the delivery of insulin is stopped and the danger alarm is turned on. Patients record unreachable (E12): impossible to have access to the patients information set by the doctor (1) try one more time to get this information (2) the treatment will be stopped and the danger alarm must be turned on. Logging problem (E13 or E14): the control system is not able to register on the data base the information about the step of the cycle that has been done the information is kept in a local file. When the data base works again, the information saved on the local file is automatically sent to the data base.

11 Case study Architecture

12 Case study Design by CAAs (1/4)

13 Case study Design by CAAs (2/4)

14 Case study Design by CAAs (3/4)

15 Case study Design by CAAs (4/4)

Thank you for your attention! Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.