Using PVSio-web to Demonstrate Software Issues in Medical User Interfaces

We have used formal methods technology to investigate software and user interface design issues that may induce use error in medical devices. Our approach is based on mathematical models that capture safety concerns related to the use of a device. We analysed nine commercial medical devices from six manufacturers with our approach, and precisely identified 30 design issues. All identified issues can induce use errors that could lead to adverse clinical consequences, such as numbers being incorrectly entered. An issue with formal approaches is in making results accessible to developers, human factors experts and clinicians. In this paper, we use our tool PVSio-web to demonstrate the identified issues: PVSio-web allows us to generate realistic and interactive user interface prototypes from the same mathematical models used for analysis. Users can explore the behaviour of the prototypes by pressing buttons on realistic user interfaces that reproduce the functionality and visual representation of the real devices. Users can examine the device behaviour resulting from any interaction. Key sequences identified from analysis can be used to explore in detail the identified design issues in an accessible way.

[1]  Natarajan Shankar,et al.  Subtypes for Specifications: Predicate Subtyping in PVS , 1998, IEEE Trans. Software Eng..

[2]  Michael D. Harrison,et al.  Reusing models and properties in the analysis of similar interactive devices , 2013, Innovations in Systems and Software Engineering.

[3]  Harold W. Thimbleby,et al.  Safer "5-key" number entry user interfaces using differential formal analysis , 2012, BCS HCI.

[4]  Insup Lee,et al.  Verification of interactive software for medical devices: PCA infusion pumps and FDA regulation as an example , 2013, EICS '13.

[5]  Natarajan Shankar,et al.  PVS: Combining Specification, Proof Checking, and Model Checking , 1996, FMCAD.

[6]  Harold W. Thimbleby,et al.  On formalising interactive number entry on infusion pumps , 2011, Electron. Commun. Eur. Assoc. Softw. Sci. Technol..

[7]  Michael D. Harrison,et al.  Demonstrating that Medical Devices Satisfy User Related Safety Requirements , 2014, FHIES/SEHC.

[8]  Harold W. Thimbleby,et al.  The benefits of formalising design guidelines: a case study on the predictability of drug infusion pumps , 2013, Innovations in Systems and Software Engineering.

[9]  Natarajan Shankar,et al.  Principles and Pragmatics of Subtyping in PVS , 1999, WADT.

[10]  Yi Zhang,et al.  Formal Verification of Medical Device User Interfaces Using PVS , 2014, FASE.

[11]  César A. Muñoz,et al.  Rapid Prototyping in PVS , 2013 .

[12]  William A. Hopkins Appendix: ISMP List of Error-Prone Abbreviations, Symbols, and Dose Designations , 2010 .

[13]  Harold W. Thimbleby,et al.  PVSio-web: a tool for rapid prototyping device user interfaces in PVS , 2013, Electron. Commun. Eur. Assoc. Softw. Sci. Technol..

[14]  Lisa K Simone Software-related recalls: an analysis of records. , 2013, Biomedical instrumentation & technology.