Abstract
Safety regulations for medical device software are stipulated in numerous international standards. IEC 62304 addresses software life-cycle processes and identifies core processes, software development activities, and tasks that aim for high-integrity software as a prerequisite for dependability of medical devices controlled by this software. However, these standards prescribe neither a process model nor particular software engineering methods to accomplish the normative requirements. Hence, the manufacturer has to argue in the software development and quality management plans that the selected methods cover the required tasks and are appropriate in order to accomplish high-quality artifacts.
We propose a method for assessing quality- and engineering-centric arguments in dependability cases to assure IEC 62304-compliant software development. Our method is based on an activity-based quality model representing the impact of facts about methods and design artifacts on development activities. The impact makes the relation between characteristics of design artifacts and activities contributing to the software safety process explicit. It is derived from state-of-the-art software engineering knowledge and best practices recommended in current safety standards like IEC 61508-3.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
RTCA: Software considerations in airborne systems and equipment certification (December 1992)
Abdeen, M.M., Kahl, W., Maibaum, T.: Fda: Between process & product evaluation. In: Joint Workshop on High Confidence Medical Devices, Software and Systems and Medical Device Plug-and Play Interoperability. pp. 181–186 (2007)
Becker, U.: Model-based development of medical devices. In: Buth, B., Rabe, G., Seyfarth, T. (eds.) SAFECOMP 2009. LNCS, vol. 5775, pp. 4–17. Springer, Heidelberg (2009)
Bliznakov, Z., Mitalas, G., Pallikarakis, N.: Analysis and Classification of Medical Device Recalls. In: World Congress on Medical Physics and Biomedical Engineering - Imaging the Future Medicine. Springer, Heidelberg (2007)
Carr, M., Kondra, S., Monarch, I., Ulrich, F., Walker, C.: Taxonomy-based risk identification. Tech. Rep. CMU/SEI-93-TR-006, CMU/SEI (93)
Commission, I.E.: IEC 61508: Functional safety of electrical / electronic / programmable electronic safety-related systems (1998)
Commission, I.E.: 65A/524/CDV: IEC 61508-3: Functional safety of electrical/electronic/programmable electronic safety-related systems Part 3: Software requirements, Committee Draft for Voting (2008)
Deissenboeck, F., Wagner, S., Pizka, M., Teuchert, S., Girard, J.F.: An activity-based quality model for maintainability. In: Proceedings of the 23rd International Conference on Software Maintenance, ICSM 2007 (2007)
Feldmann, R.L., Shull, F., Denger, C., Höst, M., Lindholm, C.: A survey of software engineering techniques in medical device development. In: Joint Workshop on High Confidence Medical Devices, Software and Systems and Medical Device Plug-and-Play Interoperability, pp. 46–54 (2007)
Graydon, P., Knight, J.: Success arguments: Establishing confidence in software development. Tech. Rep. CS-2008-10, University of Virginia (2008)
Huhn, M., Zechner, A.: Analysing dependability case arguments using quality models. In: Buth, B., Rabe, G., Seyfarth, T. (eds.) SAFECOMP 2009. LNCS, vol. 5775, pp. 118–131. Springer, Heidelberg (2009)
International Electrotechnical Commission: Medical device software - Software life-cycle processes, IEC62304:2006 (2006)
Kelly, T.P., McDermid, J.A.: Safety case construction and reuse using patterns. In: Intl. Conf. on Computer Safety and Reliability (SAFECOMP), pp. 55–69 (1997)
Kelly, T.: Arguing Safety – A Systemic Approach to Managing Safety Cases. Ph.D. thesis, University of York (1998)
Kelly, T.: Reviewing assurance arguments - a step-by-step approach. In: Proceedings of Workshop on Assurance Cases for Security - The Metrics Challenge, Dependable Systems and Networks (DSN) (July 2007)
Maibaum, T.S.E., Wassyng, A.: A product-focused approach to software certification. IEEE Computer 41(2), 91–93 (2008)
Manleitner, M.: Quality attributes in IEC 62403 - a practical implementation of a process standard (2010)
Wallace, D., Kuhn, D.R.: Failure modes in medical device software: An analysis of 15 years of recall data. Intern. Journal of Reliability, Quality and Safety 8(4) (2001)
Yang, F., Jacquot, J.P.: Prouvé? et aprés? In: Actes10es Journées Francophones Internationales sur les Approches Formelles dans l’Assistance au Développement de Logiciels - AFADL 2010, pp. 133–147 (2010)
Zechner, A., Huhn, M.: Structural analysis of safety case arguments in a model-based development environment. In: Tagungsband Modellbasierte Enwicklung eingebetteter Systeme V, MBEES 2009 (2009)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Huhn, M., Zechner, A. (2010). Arguing for Software Quality in an IEC 62304 Compliant Development Process. In: Margaria, T., Steffen, B. (eds) Leveraging Applications of Formal Methods, Verification, and Validation. ISoLA 2010. Lecture Notes in Computer Science, vol 6416. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-16561-0_30
Download citation
DOI: https://doi.org/10.1007/978-3-642-16561-0_30
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-16560-3
Online ISBN: 978-3-642-16561-0
eBook Packages: Computer ScienceComputer Science (R0)