Presentation is loading. Please wait.

Presentation is loading. Please wait.

Therac-25 : Summary Malfunction Complacency Race condition (turntable / energy mismatch) Data overflow (turntable not positioned) time‘85‘86‘88 ‘87 Micro-switch.

Published byEverett Kelly Modified over 9 years ago

Similar presentations

Presentation on theme: "Therac-25 : Summary Malfunction Complacency Race condition (turntable / energy mismatch) Data overflow (turntable not positioned) time‘85‘86‘88 ‘87 Micro-switch."— Presentation transcript:

1 Therac-25 : Summary Malfunction Complacency Race condition (turntable / energy mismatch) Data overflow (turntable not positioned) time‘85‘86‘88 ‘87 Micro-switch blamed and replaced Soft/Hardware changes ignored Overdose declared impossible Software fault identified Defective and CAP requested Software fault identified Defective and CAP requested Modifications (including hardware interlocks) approved Colin Barrett, Michael Pappas, Li Qingyi FDA notified by AECL

2 Therac-25 : Procedural Failings Only one software engineer In assembly language with bespoke scheduler Overreliance in software integrity No documentation for users or internally No Quality Assurance for software No meaningful testing strategy No understanding of the risks No design capturing full feature set and reuse If it wasn’t these bugs there probably were others Colin Barrett, Michael Pappas, Li Qingyi

3 Therac-25 : Procedural Failings Poorly conceived product from failed consortium Pressure to supress faults Ignoring previous incidents Fixes failed to find root cause Fixes to appease regulators (e.g. update micro- switch) Workarounds (remove  key) Only investigating hardware / external influences Colin Barrett, Michael Pappas, Li Qingyi N G Leveson, C S Turner, “An investigation of the Therac-25 Accidents”, IEEE Computing, Vol. 26 No. 7 1993 pp. 18-41

Download ppt "Therac-25 : Summary Malfunction Complacency Race condition (turntable / energy mismatch) Data overflow (turntable not positioned) time‘85‘86‘88 ‘87 Micro-switch."

Similar presentations

Testing Workflow Purpose

Testing Workflow Purpose
Test process essentials Riitta Viitamäki, 14.4.2004

Test process essentials Riitta Viitamäki,
CSCI 5230: Project Management Software Reuse Disasters: Therac-25 and Ariane 5 Flight 501 David Sumpter 12/4/2001.

CSCI 5230: Project Management Software Reuse Disasters: Therac-25 and Ariane 5 Flight 501 David Sumpter 12/4/2001.
“An Investigation of the Therac-25 Accidents” by Nancy G. Leveson and Clark S. Turner Catherine Schell CSC 508 October 13, 2004.

“An Investigation of the Therac-25 Accidents” by Nancy G. Leveson and Clark S. Turner Catherine Schell CSC 508 October 13, 2004.
The Therac-25: A Software Fatal Failure

The Therac-25: A Software Fatal Failure
Software Quality Assurance Plan

Software Quality Assurance Plan
Software Engineering CSE470: Process 15 Software Engineering Phases Definition: What? Development: How? Maintenance: Managing change Umbrella Activities:

Software Engineering CSE470: Process 15 Software Engineering Phases Definition: What? Development: How? Maintenance: Managing change Umbrella Activities:
Social Implications of a Computerized Society Computer Errors Instructor: Oliver Schulte Simon Fraser University.

Social Implications of a Computerized Society Computer Errors Instructor: Oliver Schulte Simon Fraser University.
An Investigation of the Therac-25 Accidents Nancy G. Leveson Clark S. Turner IEEE, 1993 Presented by Jack Kustanowitz April 26, 2005 University of Maryland.

An Investigation of the Therac-25 Accidents Nancy G. Leveson Clark S. Turner IEEE, 1993 Presented by Jack Kustanowitz April 26, 2005 University of Maryland.
Therac-25 Lawsuit for Victims Against the AECL

Therac-25 Lawsuit for Victims Against the AECL
PERTEMUAN - 2 SOFTWARE QUALITY. OBJECTIVES After completing this chapter, you will be able to: ■ Define software, software quality and software quality.

PERTEMUAN - 2 SOFTWARE QUALITY. OBJECTIVES After completing this chapter, you will be able to: ■ Define software, software quality and software quality.
Therac-24 The Upshot. Summary/Overview Six patients received radiation overdoses during cancer treatment by a faulty medical linear accelerator, the Therac-25.

Therac-24 The Upshot. Summary/Overview Six patients received radiation overdoses during cancer treatment by a faulty medical linear accelerator, the Therac-25.
+ THE THERAC-25 - A SOFTWARE FATAL FAILURE Kpea, Aagbara Saturday SYSM 6309 Spring ’12 UT-Dallas.

+ THE THERAC-25 - A SOFTWARE FATAL FAILURE Kpea, Aagbara Saturday SYSM 6309 Spring ’12 UT-Dallas.
A Gift of Fire Third edition Sara Baase

A Gift of Fire Third edition Sara Baase
Jacky: “Safety-Critical Computing …” ► Therac-25 illustrated that comp controlled equipment could be less safe. ► Why use computers at all, if satisfactory.

Jacky: “Safety-Critical Computing …” ► Therac-25 illustrated that comp controlled equipment could be less safe. ► Why use computers at all, if satisfactory.
Software Quality Assurance

Software Quality Assurance
Planning and Tracking Software Quality Yordan Dimitrov Telerik Corporation www.telerik.com.

Planning and Tracking Software Quality Yordan Dimitrov Telerik Corporation
Introduction to Computer Technology

Introduction to Computer Technology
CommitCloseLaunchInvestLaunchBuildPlanExplore PRODUCT ENGINEERING – PLC COMMIT DECISION.

CommitCloseLaunchInvestLaunchBuildPlanExplore PRODUCT ENGINEERING – PLC COMMIT DECISION.
Release & Deployment ITIL Version 3

Release & Deployment ITIL Version 3

Similar presentations

Ads by Google