Presentation is loading. Please wait.

Presentation is loading. Please wait.

Therac-25 CS4001 Kristin Marsicano. Therac-25 Overview  What was the Therac-25?  How did it relate to previous models? In what ways was it similar/different?

Published byTyrone Golden Modified over 8 years ago

Similar presentations

Presentation on theme: "Therac-25 CS4001 Kristin Marsicano. Therac-25 Overview  What was the Therac-25?  How did it relate to previous models? In what ways was it similar/different?"— Presentation transcript:

1 Therac-25 CS4001 Kristin Marsicano

2 Therac-25 Overview  What was the Therac-25?  How did it relate to previous models? In what ways was it similar/different?  Was the Therac-25 reliable?

3 Therac-25 Overview  Linear accelerator used to create high-energy electron beams to treat shallow tumors and x-ray beams to reach deeper tumors  Differed from Therac-6 and Therac-20:  computer was coupled with the system such that the hardware could not function without the computer (e.g. turntable set up)  relied on the computer for safety checks; did not include the hardware safety features of previous models (which allowed for cost savings)  Similar to Therac-6 and Therac-20:  Shared a common code base  Used a computer to augment user

4 Was Therac-25 reliable?

5  Worked tens of thousands of times before overdosing anyone  Over course of 20 months (June 1985-July 1987) it administered massive overdoses to 6 patients, resulting in 3 deaths  Was notorious for displaying non-descript errors that had no negative side-effects (e.g. up to 40 times a day) Do not confuse reliability with safety!

6 Under what conditions did the lethal doses occur?

7  Fast-typing operators  Race condition between magnet positioning and screen edits  Software relies on positioning of cursor to determine if edits have been made  Change from X-Ray mode to Electron mode made before magnets finish moving; software doesn’t check cursor position until after magnets have stopped  Set button  Race condition between “gun ready” variable, gun positioning, and “Set” button  0 means gun is ready and will fire; 1-255 means not ready; increments as gun is moving and rolls over as necessary (which means it might be 0 when the gun is not really ready!

8 What parties were involved?  Patients and their families  AECL (maker of the machine)  Developers  Hospital where machine was used (and the technicians)

9 AECL Mistakes  Assumed error was only in software  Did not design system to be fail-safe (fail-safe means no single point of failure will lead to catastrophe); instead the Therac-25 relied 100% on the software to ensure safety of the system  Lack of software and hardware devices to detect and communicate an overdoes  Presumed correctness of reused code; assumed there were no errors in the previous code base when indeed there were  Management allowed the software to be developed without adequate documentation (e.g. no user manual for error codes)  Did not communicate fully with its customers with regards to the accidents

Download ppt "Therac-25 CS4001 Kristin Marsicano. Therac-25 Overview  What was the Therac-25?  How did it relate to previous models? In what ways was it similar/different?"

Similar presentations

A presentation by Werardt Systemss P Ltd An Online Machine Monitoring System.

A presentation by Werardt Systemss P Ltd An Online Machine Monitoring System.
Windows XP System Restore July 22 nd, 2006 CAEUG Meeting.

Windows XP System Restore July 22 nd, 2006 CAEUG Meeting.
CSCI 5230: Project Management Software Reuse Disasters: Therac-25 and Ariane 5 Flight 501 David Sumpter 12/4/2001.

CSCI 5230: Project Management Software Reuse Disasters: Therac-25 and Ariane 5 Flight 501 David Sumpter 12/4/2001.
“An Investigation of the Therac-25 Accidents” by Nancy G. Leveson and Clark S. Turner Catherine Schell CSC 508 October 13, 2004.

“An Investigation of the Therac-25 Accidents” by Nancy G. Leveson and Clark S. Turner Catherine Schell CSC 508 October 13, 2004.
The Therac-25: A Software Fatal Failure

The Therac-25: A Software Fatal Failure
Fabián E. Bustamante, Winter 2006 Recovery Oriented Computing Embracing Failure A. B. Brown and D. A. Patterson, Embracing failure: a case for recovery-

Fabián E. Bustamante, Winter 2006 Recovery Oriented Computing Embracing Failure A. B. Brown and D. A. Patterson, Embracing failure: a case for recovery-
Social Implications of a Computerized Society Computer Errors Instructor: Oliver Schulte Simon Fraser University.

Social Implications of a Computerized Society Computer Errors Instructor: Oliver Schulte Simon Fraser University.
Background Increasing use of automated systems Hardware and software technology are improving rapidly User interface technology is lagging Critical bottleneck.

Background Increasing use of automated systems Hardware and software technology are improving rapidly User interface technology is lagging Critical bottleneck.
An Investigation of the Therac-25 Accidents Nancy G. Leveson Clark S. Turner IEEE, 1993 Presented by Jack Kustanowitz April 26, 2005 University of Maryland.

An Investigation of the Therac-25 Accidents Nancy G. Leveson Clark S. Turner IEEE, 1993 Presented by Jack Kustanowitz April 26, 2005 University of Maryland.
Can We Trust the Computer? Case Study: The Therac-25 Based on Article in IEEE-Computer, July 1993.

Can We Trust the Computer? Case Study: The Therac-25 Based on Article in IEEE-Computer, July 1993.
Therac-25 Lawsuit for Victims Against the AECL

Therac-25 Lawsuit for Victims Against the AECL
DESCRIBING INPUT DEVICES

DESCRIBING INPUT DEVICES
+ THE THERAC-25 - A SOFTWARE FATAL FAILURE Kpea, Aagbara Saturday SYSM 6309 Spring ’12 UT-Dallas.

+ THE THERAC-25 - A SOFTWARE FATAL FAILURE Kpea, Aagbara Saturday SYSM 6309 Spring ’12 UT-Dallas.
Syllabus Case Histories WW III Almost Medical Killing Machine

Syllabus Case Histories WW III Almost Medical Killing Machine
Instructions and Reporting Requirements Module 9 Electronic Reporting For Facilities March 2014 North Carolina Central Cancer Registry State Center for.

Instructions and Reporting Requirements Module 9 Electronic Reporting For Facilities March 2014 North Carolina Central Cancer Registry State Center for.
Slides prepared by Cyndi Chie and Sarah Frye. Fourth edition revisions by Sharon Gray. A Gift of Fire Fourth edition Sara Baase Chapter 8: Errors, Failures,

Slides prepared by Cyndi Chie and Sarah Frye. Fourth edition revisions by Sharon Gray. A Gift of Fire Fourth edition Sara Baase Chapter 8: Errors, Failures,
A Gift of Fire Third edition Sara Baase

A Gift of Fire Third edition Sara Baase
A Gift of Fire Third edition Sara Baase

A Gift of Fire Third edition Sara Baase
Errors, Failures and Risks CS4020 Overview Failures and Errors in Computer Systems Case Study: The Therac-25 Increasing Reliability and Safety Dependence,

Errors, Failures and Risks CS4020 Overview Failures and Errors in Computer Systems Case Study: The Therac-25 Increasing Reliability and Safety Dependence,
Jacky: “Safety-Critical Computing …” ► Therac-25 illustrated that comp controlled equipment could be less safe. ► Why use computers at all, if satisfactory.

Jacky: “Safety-Critical Computing …” ► Therac-25 illustrated that comp controlled equipment could be less safe. ► Why use computers at all, if satisfactory.

Similar presentations

Ads by Google