SlideShare a Scribd company logo

How to Use Open Source Technologies in Safety-critical Medical Device Platforms

Shahid Shah
Shahid Shah

This document discusses the use of open source software and technologies in safety-critical medical device platforms. It argues that medical device vendors should be using open source to implement safety-critical requirements, contribute to open source projects, and create their own open source projects. Open source can help address the need for more connectivity and interoperability between devices as healthcare moves towards integrated systems. However, open source also presents compliance, reliability and security challenges that require risk assessments, hazard analysis, and processes to validate code from open source projects.

Technology
1 of 40
Open Source Software (OSS) and Technologies in Safety-critical Medical Device Platforms Using Open Source to Design Connected Medical Devices Shahid N. Shah, CEO
NETSPECTIVE Who is Shahid? • Chairman, OSEHRA.org Board of Advisors • 20+ years of software engineering and multi-discipline complex IT implementations (Gov., defense, health, finance, insurance) • 12+ years of healthcare IT and medical devices experience (blog at http://healthcareguy.com) • 15+ years of technology management experience (government, non-profit, commercial) www.netspective.com Author of Chapter 13, “You’re the CIO of your Own Office” 2
NETSPECTIVE Open source software (OSS) is in your future • You’re moving from standalone boxes to fully integrated systems • mHealth demands more interoperability • Your customers demand flexible workflows with enhanced functionality • Your customer demand data integration with their systems • Security of medical devices is under great scrutiny and excuses aren’t going to be accepted www.netspective.com 3
NETSPECTIVE The new realities of patient populations Prevention • Education • Health Promotions • Healthy Lifestyle Choices • Health Risk Assessment Management • • Obesity Management Wellness Management • • • • • • • Assessment – HRA Stratification Dietary Physical Activity Physician Coordination Social Network Behavior Modification • • • Diabetes COPD CHF • • • • • Stratification & Enrollment Disease Management Care Coordination MD Pay-for-Performance Patient Coaching • • • • Physicians Office Hospital Other sites Pharmacology • Catastrophic Case Management Utilization Management Care Coordination Co-morbidities • • • 26 % of Population 35 % of Population 35 % of Population 4% of Population 4 % of Medical Costs 22 % of Medical Costs 37 % of Medical Costs 36 % of Medical Costs Source: Amir Jafri, PrescribeWell www.netspective.com 4
NETSPECTIVE Wireless BAN Ecosystem is complex without OSS Source: Qualcomm www.netspective.com 5
NETSPECTIVE Data is getting more sophisticated, analysis even more so It’s hard today but will be even harder tomorrow Economics Administrative www.netspective.com Phenotypics Behavioral Biochemical Genomics Proteomics IOT sensors 6
NETSPECTIVE Implications of healthcare trends PPACA ACO Software Regulated IT and Systems Integration Services MU Health Home www.netspective.com PCMH mHealth DATA Evidence Based Medicine Comparative Effectiveness 7
NETSPECTIVE What users want vs. what they’re offered Data visualization requires integration and aggregation What’s being offered to users www.netspective.com What users really want 8
NETSPECTIVE Evolving Healthcare IT Enterprise Architecture You need to fit into a complex environment Device Teaming Cloud Services Patient Self-Management Platforms SSL VPN Patient Context Monitoring BaaS Gateway (DDS, XMPP ESB) , Device Data Data Transformation (ESB, HL7) Remote Surveillance Management Dashboards HIT Integration Report Generation Device reimbursement www.netspective.com Enterprise Data RCM, Financials, EHRs Device Management Cross Device App Workflows Device Utilization Device profitability Alarm Notifications Device Inventory 9
• Should medical device vendors be using open source to implement their safetycritical requirements? • How about contributing to open source projects? • How about creating their own open source projects? www.netspective.com 10
Yes! • If you’re not using open source projects in your own devices then you’re doing far more engineering work than is necessary. • If you’re not contributing to open source then you’re not making code you rely on better. • If you’re not creating open source then you’re missing a valuable marketing opportunity. www.netspective.com 11
NETSPECTIVE Connectivity is a must, OSS is answer Most obvious benefit Least attention Most promising capability This talk focuses on connected devices www.netspective.com 12
NETSPECTIVE Appreciate tradeoffs The more connectionfriendly a device, the harder it is to validate it Integrationfriendliness Ease of validation Lesson: Demand Testability www.netspective.com 13
NETSPECTIVE What are we afraid of when it comes to OSS? Compliance Reliability Will the FDA and other regulators accept open source code in safetycritical systems? Is open source code safe enough for medical devices? www.netspective.com 14
Yes, of course. Proof: we did it at American Red Cross in 1996 for a Class 3 device built on a modern enterprise IT ecosystem Lesson: Risk managers and quality leadership often use regulators as an excuse to prevent OSS use because of OSS illiteracy, not legitimate strategy or actual evidence of harm. Reality: Regulators don’t care about your use of open source, they care about safe systems that meet intended use. www.netspective.com 15
NETSPECTIVE Code you write is not necessarily safer There is significantly more and better testing of large open source projects than you could ever do In an integrated ecosystem, you have to learn how to rely on others and do so safely and effectively Modern IT systems’ custom components www.netspective.com 16
NETSPECTIVE It’s not as hard as we think… • Modern real-time operating systems (open source and commercial) are reliable for safety-critical medical-grade requirements. • Open standards such as TCP/IP DDS, HTTP and XMPP can , , pull vendors out of the 1980’s and into the 1990’s.  • Open source and open standards that promote enterprise IT connectivity can pull vendors into the 2010’s and beyond. www.netspective.com 17
How to start using OSS immediately
NETSPECTIVE Remove OSS illiteracy from decision making Understand open source licensing, remove the fear of IP loss www.netspective.com Understand where code is coming from and what test harnesses included Get in touch with the open source developers to find out the current utilization 19
NETSPECTIVE Choose the right OSS projects Requirements traceability possible? Code reviews conducted by OSS code authors? Unit testing conducted by authors? Continuous integration system employed? Integration testing conducted? Performance testing conducted? Safety testing conducted? Security testing conducted? www.netspective.com 20
NETSPECTIVE Engender trust in the code’s provenance Connect to the revision control system of the open source project www.netspective.com Create your own binaries Create a process to securely sign the binaries Create your own deployment packages 21
NETSPECTIVE Integrate OSS into your QSR process Employ continuous integration (CI) for your own and OSS project components Create a process to test the binaries using code coverage tools Keep an eye on changes coming in from the source and retest regularly www.netspective.com Conduct continuous hazard and risk analysis of outside code Review your process with the compliance officers and get their regular buy in 22
NETSPECTIVE But it’s not easy either…we need Risk Assessments Hazard Analysis Design for Testability Design for Simulations Documentation Traceability Mathematical Proofs Determinism Instrumentation Theoretical foundations www.netspective.com 23
NETSPECTIVE OSS hazard and risk assessment • What is the intended use for the device or system? • How will the OSS product you’re planning to use going to be tied to your intended use? • What is the risk associated with the OSS product for that particular intended use? R = S h x Ph www.netspective.com 24
NETSPECTIVE Risk is related to severity and harm R = risk Sh = severity of harm Ph = probability of harm R = S h x Ph • Harm is damage done to a person • Severity is the degree of harm done • Probability is the frequency and duration of exposure www.netspective.com 25
NETSPECTIVE Examples of Severity & Probability Severity Probability • multiple fatalities • fatalities • severe injury (non-reversible, requires hospitalization) • moderate injury (reversible, requires hospitalization) • minor (reversible, requires first aid) • very minor (no first aid) • • • • • • • www.netspective.com Constant exposure Hourly Daily Weekly Monthly Yearly Never 26
NETSPECTIVE Formal risk assessment methods What-if analysis Preliminary hazard analysis (PHA) Fault tree analysis (FTA) www.netspective.com Failure modes and effects analysis (FMEA) Hazard and operability studies 27
NETSPECTIVE OSS Risk analysis steps - FMEA Define the function of the OSS product being analyzed. Identify potential failures of the OSS. Determine the causes of each failure types. Determine the effects of potential failures. Assign a risk index to each of the failure types. Determine the most appropriate corrective/preventive actions. • Monitor the implementation of the corrective/preventive to ensure that it is having the desired effect. • • • • • • www.netspective.com 28
NETSPECTIVE Good summary of FMEA • http://en.wikipedia.org/wiki/ Failure_mode_and_effects_analysis www.netspective.com 29
NETSPECTIVE Sampling of OSS / open standards Project / Standard Subject area D G Linux or Android Operating system   OMG DDS (data distribution service) Publish and subscribe messaging   AppWeb, Apache Web/app server   OpenTSDB Time series database  Open source project Mirth HL7 messaging engine  Built on Mule ESB Alembic Aurion HIE, message exchange  Successor to CONNECT HTML5, XMPP JSON , Various areas   Don’t reinvent the wheel SAML, XACML Security and privacy   DynObj, OSGi, JPF Plugin frameworks   www.netspective.com Comments Open standard with open source implementations Build for extensibility 30
NETSPECTIVE OSS applicability to connectivity Physical • Wired, wireless (WiFi, cellular, etc.) Logical • Device  Gateway  Data Routers  Systems Structural • Security, Numbers, Units of Measure, etc. Semantic • Presence, Vitals, Glucose, Heartbeats, etc. www.netspective.com 31
NETSPECTIVE OSS applicability to manageability Security • Is the device authorized? Teaming Inventory • Device grouping • Where is the device? Presence • Is a device connected? www.netspective.com 32
NETSPECTIVE OSS enables extensible devices Legacy Devices www.netspective.com Future Devices 33
NETSPECTIVE Shahid’s “Ultimate Connectivity Architecture” 5 Device Components Sensors Storage Display Web Server, IM Client • Presence 6 • Messaging • Registration • JDBC, Query Plugins 3rd Party Plugins App #1 App #2 7 4 Connectivity Layer (DDS, HTTP, XMPP) 3 Plugin Container 2 1 Security and Management Layer Device OS Event Architecture Location Aware (QNX, Linux, Windows) SSL VPN Healthcare Enterprise 8 Patient Context Device Gateway (DDS, ESB) Inventory Notifications Cloud Services Data Transformation (ESB, HL7) Management Dashboards www.netspective.com Workflow 9 Enterprise Data 34
NETSPECTIVE OSS in Ultimate Architecture Core Connectivity is built-in, not added Device Components Think about Plugins from day 1 Build on Open Source Connectivity Layer (DDS, HTTP, XMPP) Plugin Container Device OS (QNX, Linux, Windows) Don’t create your own OS! www.netspective.com Security and Management Layer Create code as a last resort Security isn’t added later 35
NETSPECTIVE OSS enables plugin architecture Device Components 3rd Party Plugins App #1 App #2 Plugins Event Architecture Location Aware Plugin Container Device OS (QNX, Linux, Windows) www.netspective.com Connectivity Layer (DDS, HTTP, XMPP) Security and Management Layer 36
NETSPECTIVE OSS in connectivity components Surveillance & “remote display” Remote Access Alarms Device Components Design all functions as plugins Event Viewer Web Server, IM Client • Presence • Messaging • Registration • JDBC, Query Connectivity Layer (DDS, HTTP, XMPP) Plugin Container Device OS (QNX, Linux, Windows) www.netspective.com Security and Management Layer 37
NETSPECTIVE OSS in device components Virtualize! Device Components Sensors “On Device” Workflow Patient Context, too www.netspective.com Storage Web Server, IM Client Display Event Architecture Location Aware 3rd Party Plugins Plugins Connectivity Layer (HTTP, XMPP) Plugin Container Device OS (QNX, Linux, Windows) Security and Management Layer 38
NETSPECTIVE OSS enables enterprise integration Device Teaming Cloud Services Patient Self-Management Platforms SSL VPN Patient Context Monitoring BaaS Gateway (DDS, XMPP ESB) , Device Data Data Transformation (ESB, HL7) Remote Surveillance Management Dashboards HIT Integration Report Generation Device reimbursement www.netspective.com Enterprise Data RCM, Financials, EHRs Device Management Cross Device App Workflows Device Utilization Device profitability Alarm Notifications Device Inventory 39
Visit http://www.netspective.com http://www.healthcareguy.com E-mail shahid.shah@netspective.com Follow @ShahidNShah Call 202-713-5409 Thank You

Recommended

HxRefactored: Stop dreaming about fluid data interoperability and start focus...
HxRefactored: Stop dreaming about fluid data interoperability and start focus...HxRefactored: Stop dreaming about fluid data interoperability and start focus...
HxRefactored: Stop dreaming about fluid data interoperability and start focus...Shahid Shah
 
Architecting, designing and building medical devices in an outcomes focused B...
Architecting, designing and building medical devices in an outcomes focused B...Architecting, designing and building medical devices in an outcomes focused B...
Architecting, designing and building medical devices in an outcomes focused B...Shahid Shah
 
Reasons Why Health Data is Poorly Integrated Today and What We Can Do About It
Reasons Why Health Data is Poorly Integrated Today and What We Can Do About ItReasons Why Health Data is Poorly Integrated Today and What We Can Do About It
Reasons Why Health Data is Poorly Integrated Today and What We Can Do About ItShahid Shah
 
OSEHRA Summit 2012 Lunch Keynote: Current health IT systems integrate poorly ...
OSEHRA Summit 2012 Lunch Keynote: Current health IT systems integrate poorly ...OSEHRA Summit 2012 Lunch Keynote: Current health IT systems integrate poorly ...
OSEHRA Summit 2012 Lunch Keynote: Current health IT systems integrate poorly ...Shahid Shah
 
How to Use Open Source Technologies in Safety-critical Digital Health Applica...
How to Use Open Source Technologies in Safety-critical Digital Health Applica...How to Use Open Source Technologies in Safety-critical Digital Health Applica...
How to Use Open Source Technologies in Safety-critical Digital Health Applica...Shahid Shah
 
Building safety-critical medical device platforms and Meaningful Use EHR gate...
Building safety-critical medical device platforms and Meaningful Use EHR gate...Building safety-critical medical device platforms and Meaningful Use EHR gate...
Building safety-critical medical device platforms and Meaningful Use EHR gate...Shahid Shah
 
Demand connected medical devices to improve military EHRs
Demand connected medical devices to improve military EHRsDemand connected medical devices to improve military EHRs
Demand connected medical devices to improve military EHRsShahid Shah
 
How to emrace risk-based Security management in a compliance-driven culture
How to emrace risk-based Security management in a compliance-driven cultureHow to emrace risk-based Security management in a compliance-driven culture
How to emrace risk-based Security management in a compliance-driven cultureShahid Shah
 

Recommended

HxRefactored: Stop dreaming about fluid data interoperability and start focus...
HxRefactored: Stop dreaming about fluid data interoperability and start focus...HxRefactored: Stop dreaming about fluid data interoperability and start focus...
HxRefactored: Stop dreaming about fluid data interoperability and start focus...Shahid Shah
 
Architecting, designing and building medical devices in an outcomes focused B...
Architecting, designing and building medical devices in an outcomes focused B...Architecting, designing and building medical devices in an outcomes focused B...
Architecting, designing and building medical devices in an outcomes focused B...Shahid Shah
 
Reasons Why Health Data is Poorly Integrated Today and What We Can Do About It
Reasons Why Health Data is Poorly Integrated Today and What We Can Do About ItReasons Why Health Data is Poorly Integrated Today and What We Can Do About It
Reasons Why Health Data is Poorly Integrated Today and What We Can Do About ItShahid Shah
 
OSEHRA Summit 2012 Lunch Keynote: Current health IT systems integrate poorly ...
OSEHRA Summit 2012 Lunch Keynote: Current health IT systems integrate poorly ...OSEHRA Summit 2012 Lunch Keynote: Current health IT systems integrate poorly ...
OSEHRA Summit 2012 Lunch Keynote: Current health IT systems integrate poorly ...Shahid Shah
 
How to Use Open Source Technologies in Safety-critical Digital Health Applica...
How to Use Open Source Technologies in Safety-critical Digital Health Applica...How to Use Open Source Technologies in Safety-critical Digital Health Applica...
How to Use Open Source Technologies in Safety-critical Digital Health Applica...Shahid Shah
 
Building safety-critical medical device platforms and Meaningful Use EHR gate...
Building safety-critical medical device platforms and Meaningful Use EHR gate...Building safety-critical medical device platforms and Meaningful Use EHR gate...
Building safety-critical medical device platforms and Meaningful Use EHR gate...Shahid Shah
 
Demand connected medical devices to improve military EHRs
Demand connected medical devices to improve military EHRsDemand connected medical devices to improve military EHRs
Demand connected medical devices to improve military EHRsShahid Shah
 
How to emrace risk-based Security management in a compliance-driven culture
How to emrace risk-based Security management in a compliance-driven cultureHow to emrace risk-based Security management in a compliance-driven culture
How to emrace risk-based Security management in a compliance-driven cultureShahid Shah
 
Enterprise mHealth Strategy 2019
Enterprise mHealth Strategy 2019Enterprise mHealth Strategy 2019
Enterprise mHealth Strategy 2019CitiusTech
 
OSEHRA and VistA Platform Overview
OSEHRA and VistA Platform OverviewOSEHRA and VistA Platform Overview
OSEHRA and VistA Platform OverviewShahid Shah
 
The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...
The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...
The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...Shahid Shah
 
Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...
Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...
Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...Shahid Shah
 
Deloitte Insights
Deloitte InsightsDeloitte Insights
Deloitte InsightsDigital Strategist
 
OSEHRA is a Great Business Opportunity for Systems Integrators
OSEHRA is a Great Business Opportunity for Systems IntegratorsOSEHRA is a Great Business Opportunity for Systems Integrators
OSEHRA is a Great Business Opportunity for Systems IntegratorsShahid Shah
 
Blockchain Applications in Healthcare
Blockchain Applications in HealthcareBlockchain Applications in Healthcare
Blockchain Applications in HealthcareCitiusTech
 
Choosing the Right Document Processing Solution for Healthcare Organizations
Choosing the Right Document Processing Solution for Healthcare OrganizationsChoosing the Right Document Processing Solution for Healthcare Organizations
Choosing the Right Document Processing Solution for Healthcare OrganizationsProvectus
 
Reasons why health data is poorly integrated today and what we can do about it
Reasons why health data is poorly integrated today and what we can do about itReasons why health data is poorly integrated today and what we can do about it
Reasons why health data is poorly integrated today and what we can do about itShahid Shah
 
The Myth of Health Data Integration Complexity
The Myth of Health Data Integration ComplexityThe Myth of Health Data Integration Complexity
The Myth of Health Data Integration ComplexityShahid Shah
 
Hadoop and Data Virtualization - A Case Study by VHA
Hadoop and Data Virtualization - A Case Study by VHAHadoop and Data Virtualization - A Case Study by VHA
Hadoop and Data Virtualization - A Case Study by VHAHortonworks
 
Into the Big Data Future with Watson Analytics
Into the Big Data Future with Watson AnalyticsInto the Big Data Future with Watson Analytics
Into the Big Data Future with Watson AnalyticsIBM Innovation Center Silicon Valley
 
Building Confidence in Big Data - IBM Smarter Business 2013
Building Confidence in Big Data - IBM Smarter Business 2013 Building Confidence in Big Data - IBM Smarter Business 2013
Building Confidence in Big Data - IBM Smarter Business 2013 IBM Sverige
 
Connected medical devices
Connected medical devicesConnected medical devices
Connected medical devicesShahid Shah
 
Accelerate Healthcare Technology Modernization with Containerization and DevOps
Accelerate Healthcare Technology Modernization with Containerization and DevOpsAccelerate Healthcare Technology Modernization with Containerization and DevOps
Accelerate Healthcare Technology Modernization with Containerization and DevOpsCitiusTech
 
Proper Data Integration can change Medical Science
Proper Data Integration can change Medical ScienceProper Data Integration can change Medical Science
Proper Data Integration can change Medical ScienceShahid Shah
 
Data Driven Decisions - Big Data Warehousing Meetup, FICO
Data Driven Decisions - Big Data Warehousing Meetup, FICOData Driven Decisions - Big Data Warehousing Meetup, FICO
Data Driven Decisions - Big Data Warehousing Meetup, FICOCaserta
 
IBM Software Day 2013. Smarter analytics and big data. building the next gene...
IBM Software Day 2013. Smarter analytics and big data. building the next gene...IBM Software Day 2013. Smarter analytics and big data. building the next gene...
IBM Software Day 2013. Smarter analytics and big data. building the next gene...IBM (Middle East and Africa)
 
How Wireless Networks Empower Patients
How Wireless Networks Empower PatientsHow Wireless Networks Empower Patients
How Wireless Networks Empower PatientsShahid Shah
 
Insight 2020 Technology Report: IT Trends for Midmarket and Small Business
Insight 2020 Technology Report: IT Trends for Midmarket and Small BusinessInsight 2020 Technology Report: IT Trends for Midmarket and Small Business
Insight 2020 Technology Report: IT Trends for Midmarket and Small BusinessInsight
 
OSCon 2011 Talk: The implications of open source technologies in safety criti...
OSCon 2011 Talk: The implications of open source technologies in safety criti...OSCon 2011 Talk: The implications of open source technologies in safety criti...
OSCon 2011 Talk: The implications of open source technologies in safety criti...Shahid Shah
 
Software Security Assurance for DevOps
Software Security Assurance for DevOpsSoftware Security Assurance for DevOps
Software Security Assurance for DevOpsBlack Duck by Synopsys
 

More Related Content

What's hot

Enterprise mHealth Strategy 2019
Enterprise mHealth Strategy 2019Enterprise mHealth Strategy 2019
Enterprise mHealth Strategy 2019CitiusTech
 
OSEHRA and VistA Platform Overview
OSEHRA and VistA Platform OverviewOSEHRA and VistA Platform Overview
OSEHRA and VistA Platform OverviewShahid Shah
 
The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...
The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...
The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...Shahid Shah
 
Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...
Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...
Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...Shahid Shah
 
OSEHRA is a Great Business Opportunity for Systems Integrators
OSEHRA is a Great Business Opportunity for Systems IntegratorsOSEHRA is a Great Business Opportunity for Systems Integrators
OSEHRA is a Great Business Opportunity for Systems IntegratorsShahid Shah
 
Blockchain Applications in Healthcare
Blockchain Applications in HealthcareBlockchain Applications in Healthcare
Blockchain Applications in HealthcareCitiusTech
 
Choosing the Right Document Processing Solution for Healthcare Organizations
Choosing the Right Document Processing Solution for Healthcare OrganizationsChoosing the Right Document Processing Solution for Healthcare Organizations
Choosing the Right Document Processing Solution for Healthcare OrganizationsProvectus
 
Reasons why health data is poorly integrated today and what we can do about it
Reasons why health data is poorly integrated today and what we can do about itReasons why health data is poorly integrated today and what we can do about it
Reasons why health data is poorly integrated today and what we can do about itShahid Shah
 
The Myth of Health Data Integration Complexity
The Myth of Health Data Integration ComplexityThe Myth of Health Data Integration Complexity
The Myth of Health Data Integration ComplexityShahid Shah
 
Hadoop and Data Virtualization - A Case Study by VHA
Hadoop and Data Virtualization - A Case Study by VHAHadoop and Data Virtualization - A Case Study by VHA
Hadoop and Data Virtualization - A Case Study by VHAHortonworks
 
Building Confidence in Big Data - IBM Smarter Business 2013
Building Confidence in Big Data - IBM Smarter Business 2013 Building Confidence in Big Data - IBM Smarter Business 2013
Building Confidence in Big Data - IBM Smarter Business 2013 IBM Sverige
 
Connected medical devices
Connected medical devicesConnected medical devices
Connected medical devicesShahid Shah
 
Accelerate Healthcare Technology Modernization with Containerization and DevOps
Accelerate Healthcare Technology Modernization with Containerization and DevOpsAccelerate Healthcare Technology Modernization with Containerization and DevOps
Accelerate Healthcare Technology Modernization with Containerization and DevOpsCitiusTech
 
Proper Data Integration can change Medical Science
Proper Data Integration can change Medical ScienceProper Data Integration can change Medical Science
Proper Data Integration can change Medical ScienceShahid Shah
 
Data Driven Decisions - Big Data Warehousing Meetup, FICO
Data Driven Decisions - Big Data Warehousing Meetup, FICOData Driven Decisions - Big Data Warehousing Meetup, FICO
Data Driven Decisions - Big Data Warehousing Meetup, FICOCaserta
 
IBM Software Day 2013. Smarter analytics and big data. building the next gene...
IBM Software Day 2013. Smarter analytics and big data. building the next gene...IBM Software Day 2013. Smarter analytics and big data. building the next gene...
IBM Software Day 2013. Smarter analytics and big data. building the next gene...IBM (Middle East and Africa)
 
How Wireless Networks Empower Patients
How Wireless Networks Empower PatientsHow Wireless Networks Empower Patients
How Wireless Networks Empower PatientsShahid Shah
 
Insight 2020 Technology Report: IT Trends for Midmarket and Small Business
Insight 2020 Technology Report: IT Trends for Midmarket and Small BusinessInsight 2020 Technology Report: IT Trends for Midmarket and Small Business
Insight 2020 Technology Report: IT Trends for Midmarket and Small BusinessInsight
 

What's hot (20)

Enterprise mHealth Strategy 2019
Enterprise mHealth Strategy 2019Enterprise mHealth Strategy 2019
Enterprise mHealth Strategy 2019
 
OSEHRA and VistA Platform Overview
OSEHRA and VistA Platform OverviewOSEHRA and VistA Platform Overview
OSEHRA and VistA Platform Overview
 
The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...
The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...
The shift from Fee for Service to Outcomes-Driven care means huge opportuniti...
 
Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...
Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...
Open Source is a great opportunity for EHR, Digital Health, and Health IT Int...
 
Deloitte Insights
Deloitte InsightsDeloitte Insights
Deloitte Insights
 
OSEHRA is a Great Business Opportunity for Systems Integrators
OSEHRA is a Great Business Opportunity for Systems IntegratorsOSEHRA is a Great Business Opportunity for Systems Integrators
OSEHRA is a Great Business Opportunity for Systems Integrators
 
Blockchain Applications in Healthcare
Blockchain Applications in HealthcareBlockchain Applications in Healthcare
Blockchain Applications in Healthcare
 
Choosing the Right Document Processing Solution for Healthcare Organizations
Choosing the Right Document Processing Solution for Healthcare OrganizationsChoosing the Right Document Processing Solution for Healthcare Organizations
Choosing the Right Document Processing Solution for Healthcare Organizations
 
Reasons why health data is poorly integrated today and what we can do about it
Reasons why health data is poorly integrated today and what we can do about itReasons why health data is poorly integrated today and what we can do about it
Reasons why health data is poorly integrated today and what we can do about it
 
The Myth of Health Data Integration Complexity
The Myth of Health Data Integration ComplexityThe Myth of Health Data Integration Complexity
The Myth of Health Data Integration Complexity
 
Hadoop and Data Virtualization - A Case Study by VHA
Hadoop and Data Virtualization - A Case Study by VHAHadoop and Data Virtualization - A Case Study by VHA
Hadoop and Data Virtualization - A Case Study by VHA
 
Into the Big Data Future with Watson Analytics
Into the Big Data Future with Watson AnalyticsInto the Big Data Future with Watson Analytics
Into the Big Data Future with Watson Analytics
 
Building Confidence in Big Data - IBM Smarter Business 2013
Building Confidence in Big Data - IBM Smarter Business 2013 Building Confidence in Big Data - IBM Smarter Business 2013
Building Confidence in Big Data - IBM Smarter Business 2013
 
Connected medical devices
Connected medical devicesConnected medical devices
Connected medical devices
 
Accelerate Healthcare Technology Modernization with Containerization and DevOps
Accelerate Healthcare Technology Modernization with Containerization and DevOpsAccelerate Healthcare Technology Modernization with Containerization and DevOps
Accelerate Healthcare Technology Modernization with Containerization and DevOps
 
Proper Data Integration can change Medical Science
Proper Data Integration can change Medical ScienceProper Data Integration can change Medical Science
Proper Data Integration can change Medical Science
 
Data Driven Decisions - Big Data Warehousing Meetup, FICO
Data Driven Decisions - Big Data Warehousing Meetup, FICOData Driven Decisions - Big Data Warehousing Meetup, FICO
Data Driven Decisions - Big Data Warehousing Meetup, FICO
 
IBM Software Day 2013. Smarter analytics and big data. building the next gene...
IBM Software Day 2013. Smarter analytics and big data. building the next gene...IBM Software Day 2013. Smarter analytics and big data. building the next gene...
IBM Software Day 2013. Smarter analytics and big data. building the next gene...
 
How Wireless Networks Empower Patients
How Wireless Networks Empower PatientsHow Wireless Networks Empower Patients
How Wireless Networks Empower Patients
 
Insight 2020 Technology Report: IT Trends for Midmarket and Small Business
Insight 2020 Technology Report: IT Trends for Midmarket and Small BusinessInsight 2020 Technology Report: IT Trends for Midmarket and Small Business
Insight 2020 Technology Report: IT Trends for Midmarket and Small Business
 

Similar to How to Use Open Source Technologies in Safety-critical Medical Device Platforms

OSCon 2011 Talk: The implications of open source technologies in safety criti...
OSCon 2011 Talk: The implications of open source technologies in safety criti...OSCon 2011 Talk: The implications of open source technologies in safety criti...
OSCon 2011 Talk: The implications of open source technologies in safety criti...Shahid Shah
 
Software Security Assurance for DevOps
Software Security Assurance for DevOpsSoftware Security Assurance for DevOps
Software Security Assurance for DevOpsBlack Duck by Synopsys
 
Software Security Assurance for Devops
Software Security Assurance for DevopsSoftware Security Assurance for Devops
Software Security Assurance for DevopsJerika Phelps
 
Guaranteeing successful EHR implementations
Guaranteeing successful EHR implementationsGuaranteeing successful EHR implementations
Guaranteeing successful EHR implementationsShahid Shah
 
AlienVault MSSP Overview - A Different Approach to Security for MSSP's
AlienVault MSSP Overview - A Different Approach to Security for MSSP'sAlienVault MSSP Overview - A Different Approach to Security for MSSP's
AlienVault MSSP Overview - A Different Approach to Security for MSSP'sAlienVault
 
Philly ETE 2016: Securing Software by Construction
Philly ETE 2016: Securing Software by ConstructionPhilly ETE 2016: Securing Software by Construction
Philly ETE 2016: Securing Software by Constructionjxyz
 
A Tale of Security & Ops Teamwork for Rapid Security Incident Resolution
A Tale of Security & Ops Teamwork for Rapid Security Incident ResolutionA Tale of Security & Ops Teamwork for Rapid Security Incident Resolution
A Tale of Security & Ops Teamwork for Rapid Security Incident ResolutionAmazon Web Services
 
Building DevOps in the enterprise: Transforming challenges into organizationa...
Building DevOps in the enterprise: Transforming challenges into organizationa...Building DevOps in the enterprise: Transforming challenges into organizationa...
Building DevOps in the enterprise: Transforming challenges into organizationa...Jonah Kowall
 
Trusted, Transparent and Fair AI using Open Source
Trusted, Transparent and Fair AI using Open SourceTrusted, Transparent and Fair AI using Open Source
Trusted, Transparent and Fair AI using Open SourceAnimesh Singh
 
Cybersecurity Operations: Examining the State of the SOC
Cybersecurity Operations: Examining the State of the SOCCybersecurity Operations: Examining the State of the SOC
Cybersecurity Operations: Examining the State of the SOCFidelis Cybersecurity
 
OSB50: Operational Security: State of the Union
OSB50: Operational Security: State of the UnionOSB50: Operational Security: State of the Union
OSB50: Operational Security: State of the UnionIvanti
 
Open Source Security for Newbies - Best Practices
Open Source Security for Newbies - Best PracticesOpen Source Security for Newbies - Best Practices
Open Source Security for Newbies - Best PracticesBlack Duck by Synopsys
 
Shifting the conversation from active interception to proactive neutralization
Shifting the conversation from active interception to proactive neutralization Shifting the conversation from active interception to proactive neutralization
Shifting the conversation from active interception to proactive neutralization Rogue Wave Software
 
Introduction to DevOps slides.pdf
Introduction to DevOps slides.pdfIntroduction to DevOps slides.pdf
Introduction to DevOps slides.pdfBoreVishnusai
 
The Top 3 Strategies To Reduce Your Open Source Security Risks - A WhiteSour...
The Top 3 Strategies To Reduce Your Open Source Security Risks - A WhiteSour... The Top 3 Strategies To Reduce Your Open Source Security Risks - A WhiteSour...
The Top 3 Strategies To Reduce Your Open Source Security Risks - A WhiteSour...WhiteSource
 
2017-05-10 Gate4SPICE: "Legacy Software"
2017-05-10 Gate4SPICE: "Legacy Software"2017-05-10 Gate4SPICE: "Legacy Software"
2017-05-10 Gate4SPICE: "Legacy Software"Alexander Much
 

Similar to How to Use Open Source Technologies in Safety-critical Medical Device Platforms (20)

OSCon 2011 Talk: The implications of open source technologies in safety criti...
OSCon 2011 Talk: The implications of open source technologies in safety criti...OSCon 2011 Talk: The implications of open source technologies in safety criti...
OSCon 2011 Talk: The implications of open source technologies in safety criti...
 
Software Security Assurance for DevOps
Software Security Assurance for DevOpsSoftware Security Assurance for DevOps
Software Security Assurance for DevOps
 
Software Security Assurance for Devops
Software Security Assurance for DevopsSoftware Security Assurance for Devops
Software Security Assurance for Devops
 
Guaranteeing successful EHR implementations
Guaranteeing successful EHR implementationsGuaranteeing successful EHR implementations
Guaranteeing successful EHR implementations
 
AlienVault MSSP Overview - A Different Approach to Security for MSSP's
AlienVault MSSP Overview - A Different Approach to Security for MSSP'sAlienVault MSSP Overview - A Different Approach to Security for MSSP's
AlienVault MSSP Overview - A Different Approach to Security for MSSP's
 
Philly ETE 2016: Securing Software by Construction
Philly ETE 2016: Securing Software by ConstructionPhilly ETE 2016: Securing Software by Construction
Philly ETE 2016: Securing Software by Construction
 
Many products-no-security (1)
Many products-no-security (1)Many products-no-security (1)
Many products-no-security (1)
 
A Tale of Security & Ops Teamwork for Rapid Security Incident Resolution
A Tale of Security & Ops Teamwork for Rapid Security Incident ResolutionA Tale of Security & Ops Teamwork for Rapid Security Incident Resolution
A Tale of Security & Ops Teamwork for Rapid Security Incident Resolution
 
Building DevOps in the enterprise: Transforming challenges into organizationa...
Building DevOps in the enterprise: Transforming challenges into organizationa...Building DevOps in the enterprise: Transforming challenges into organizationa...
Building DevOps in the enterprise: Transforming challenges into organizationa...
 
Trusted, Transparent and Fair AI using Open Source
Trusted, Transparent and Fair AI using Open SourceTrusted, Transparent and Fair AI using Open Source
Trusted, Transparent and Fair AI using Open Source
 
Cybersecurity Operations: Examining the State of the SOC
Cybersecurity Operations: Examining the State of the SOCCybersecurity Operations: Examining the State of the SOC
Cybersecurity Operations: Examining the State of the SOC
 
Final .pptx
Final .pptxFinal .pptx
Final .pptx
 
OSB50: Operational Security: State of the Union
OSB50: Operational Security: State of the UnionOSB50: Operational Security: State of the Union
OSB50: Operational Security: State of the Union
 
Open Source Security for Newbies - Best Practices
Open Source Security for Newbies - Best PracticesOpen Source Security for Newbies - Best Practices
Open Source Security for Newbies - Best Practices
 
Shifting the conversation from active interception to proactive neutralization
Shifting the conversation from active interception to proactive neutralization Shifting the conversation from active interception to proactive neutralization
Shifting the conversation from active interception to proactive neutralization
 
M ivedix ontrack
M ivedix ontrackM ivedix ontrack
M ivedix ontrack
 
The power of Centricity RIS-IC integration
The power of Centricity RIS-IC integrationThe power of Centricity RIS-IC integration
The power of Centricity RIS-IC integration
 
Introduction to DevOps slides.pdf
Introduction to DevOps slides.pdfIntroduction to DevOps slides.pdf
Introduction to DevOps slides.pdf
 
The Top 3 Strategies To Reduce Your Open Source Security Risks - A WhiteSour...
The Top 3 Strategies To Reduce Your Open Source Security Risks - A WhiteSour... The Top 3 Strategies To Reduce Your Open Source Security Risks - A WhiteSour...
The Top 3 Strategies To Reduce Your Open Source Security Risks - A WhiteSour...
 
2017-05-10 Gate4SPICE: "Legacy Software"
2017-05-10 Gate4SPICE: "Legacy Software"2017-05-10 Gate4SPICE: "Legacy Software"
2017-05-10 Gate4SPICE: "Legacy Software"
 

More from Shahid Shah

The biggest opportunities in digital health for Turkey's Medical Sector
The biggest opportunities in digital health for Turkey's Medical Sector The biggest opportunities in digital health for Turkey's Medical Sector
The biggest opportunities in digital health for Turkey's Medical Sector Shahid Shah
 
Healthcare New Media Marketing Conference Keynote
Healthcare New Media Marketing Conference KeynoteHealthcare New Media Marketing Conference Keynote
Healthcare New Media Marketing Conference KeynoteShahid Shah
 
How to Commercialize Your Healthcare/IT/Media Product
How to Commercialize Your Healthcare/IT/Media ProductHow to Commercialize Your Healthcare/IT/Media Product
How to Commercialize Your Healthcare/IT/Media ProductShahid Shah
 
What do Secure, HIPAA Compliant, Clouds Mean to SOA in Healthcare?
What do Secure, HIPAA Compliant, Clouds Mean to SOA in Healthcare?What do Secure, HIPAA Compliant, Clouds Mean to SOA in Healthcare?
What do Secure, HIPAA Compliant, Clouds Mean to SOA in Healthcare?Shahid Shah
 
The EMR/EHR and Health IT Landscape for Sales Professionals
The EMR/EHR and Health IT Landscape for Sales ProfessionalsThe EMR/EHR and Health IT Landscape for Sales Professionals
The EMR/EHR and Health IT Landscape for Sales ProfessionalsShahid Shah
 
Med Device Vendors Have Big Opportunities in Health IT Software, Services, an...
Med Device Vendors Have Big Opportunities in Health IT Software, Services, an...Med Device Vendors Have Big Opportunities in Health IT Software, Services, an...
Med Device Vendors Have Big Opportunities in Health IT Software, Services, an...Shahid Shah
 
Revenue opportunities in the management of healthcare data deluge
Revenue opportunities in the management of healthcare data delugeRevenue opportunities in the management of healthcare data deluge
Revenue opportunities in the management of healthcare data delugeShahid Shah
 
What’s next for healthcare information technology innovation?
What’s next for healthcare information technology innovation?What’s next for healthcare information technology innovation?
What’s next for healthcare information technology innovation?Shahid Shah
 
CHC Briefing: OSEHRA is a great business opportunity for healthcare IT ISVs a...
CHC Briefing: OSEHRA is a great business opportunity for healthcare IT ISVs a...CHC Briefing: OSEHRA is a great business opportunity for healthcare IT ISVs a...
CHC Briefing: OSEHRA is a great business opportunity for healthcare IT ISVs a...Shahid Shah
 
Do’s and Don’ts of Risk-based Security management in a Compliance-driven Culture
Do’s and Don’ts of Risk-based Security management in a Compliance-driven CultureDo’s and Don’ts of Risk-based Security management in a Compliance-driven Culture
Do’s and Don’ts of Risk-based Security management in a Compliance-driven CultureShahid Shah
 
Differentiating your products and services at the HIMSS 2013 Conference
Differentiating your products and services at the HIMSS 2013 ConferenceDifferentiating your products and services at the HIMSS 2013 Conference
Differentiating your products and services at the HIMSS 2013 ConferenceShahid Shah
 
Enterprise Architecture and Agility
Enterprise Architecture and AgilityEnterprise Architecture and Agility
Enterprise Architecture and AgilityShahid Shah
 
GCC-HIMSS Webinar "What’s next for healthcare information technology innovati...
GCC-HIMSS Webinar "What’s next for healthcare information technology innovati...GCC-HIMSS Webinar "What’s next for healthcare information technology innovati...
GCC-HIMSS Webinar "What’s next for healthcare information technology innovati...Shahid Shah
 
Getting Beyond the Hype of “Disrupting Healthcare” and Focusing on Actionable...
Getting Beyond the Hype of “Disrupting Healthcare” and Focusing on Actionable...Getting Beyond the Hype of “Disrupting Healthcare” and Focusing on Actionable...
Getting Beyond the Hype of “Disrupting Healthcare” and Focusing on Actionable...Shahid Shah
 

More from Shahid Shah (14)

The biggest opportunities in digital health for Turkey's Medical Sector
The biggest opportunities in digital health for Turkey's Medical Sector The biggest opportunities in digital health for Turkey's Medical Sector
The biggest opportunities in digital health for Turkey's Medical Sector
 
Healthcare New Media Marketing Conference Keynote
Healthcare New Media Marketing Conference KeynoteHealthcare New Media Marketing Conference Keynote
Healthcare New Media Marketing Conference Keynote
 
How to Commercialize Your Healthcare/IT/Media Product
How to Commercialize Your Healthcare/IT/Media ProductHow to Commercialize Your Healthcare/IT/Media Product
How to Commercialize Your Healthcare/IT/Media Product
 
What do Secure, HIPAA Compliant, Clouds Mean to SOA in Healthcare?
What do Secure, HIPAA Compliant, Clouds Mean to SOA in Healthcare?What do Secure, HIPAA Compliant, Clouds Mean to SOA in Healthcare?
What do Secure, HIPAA Compliant, Clouds Mean to SOA in Healthcare?
 
The EMR/EHR and Health IT Landscape for Sales Professionals
The EMR/EHR and Health IT Landscape for Sales ProfessionalsThe EMR/EHR and Health IT Landscape for Sales Professionals
The EMR/EHR and Health IT Landscape for Sales Professionals
 
Med Device Vendors Have Big Opportunities in Health IT Software, Services, an...
Med Device Vendors Have Big Opportunities in Health IT Software, Services, an...Med Device Vendors Have Big Opportunities in Health IT Software, Services, an...
Med Device Vendors Have Big Opportunities in Health IT Software, Services, an...
 
Revenue opportunities in the management of healthcare data deluge
Revenue opportunities in the management of healthcare data delugeRevenue opportunities in the management of healthcare data deluge
Revenue opportunities in the management of healthcare data deluge
 
What’s next for healthcare information technology innovation?
What’s next for healthcare information technology innovation?What’s next for healthcare information technology innovation?
What’s next for healthcare information technology innovation?
 
CHC Briefing: OSEHRA is a great business opportunity for healthcare IT ISVs a...
CHC Briefing: OSEHRA is a great business opportunity for healthcare IT ISVs a...CHC Briefing: OSEHRA is a great business opportunity for healthcare IT ISVs a...
CHC Briefing: OSEHRA is a great business opportunity for healthcare IT ISVs a...
 
Do’s and Don’ts of Risk-based Security management in a Compliance-driven Culture
Do’s and Don’ts of Risk-based Security management in a Compliance-driven CultureDo’s and Don’ts of Risk-based Security management in a Compliance-driven Culture
Do’s and Don’ts of Risk-based Security management in a Compliance-driven Culture
 
Differentiating your products and services at the HIMSS 2013 Conference
Differentiating your products and services at the HIMSS 2013 ConferenceDifferentiating your products and services at the HIMSS 2013 Conference
Differentiating your products and services at the HIMSS 2013 Conference
 
Enterprise Architecture and Agility
Enterprise Architecture and AgilityEnterprise Architecture and Agility
Enterprise Architecture and Agility
 
GCC-HIMSS Webinar "What’s next for healthcare information technology innovati...
GCC-HIMSS Webinar "What’s next for healthcare information technology innovati...GCC-HIMSS Webinar "What’s next for healthcare information technology innovati...
GCC-HIMSS Webinar "What’s next for healthcare information technology innovati...
 
Getting Beyond the Hype of “Disrupting Healthcare” and Focusing on Actionable...
Getting Beyond the Hype of “Disrupting Healthcare” and Focusing on Actionable...Getting Beyond the Hype of “Disrupting Healthcare” and Focusing on Actionable...
Getting Beyond the Hype of “Disrupting Healthcare” and Focusing on Actionable...
 

Recently uploaded

Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsNathaniel Shimoni
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesKari Kakkonen
 
Modern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better StrongerModern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better Strongerpanagenda
 
2024 April Patch Tuesday
2024 April Patch Tuesday2024 April Patch Tuesday
2024 April Patch TuesdayIvanti
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
[Webinar] SpiraTest - Setting New Standards in Quality Assurance
[Webinar] SpiraTest - Setting New Standards in Quality Assurance[Webinar] SpiraTest - Setting New Standards in Quality Assurance
[Webinar] SpiraTest - Setting New Standards in Quality AssuranceInflectra
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesThousandEyes
 
Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024Hiroshi SHIBATA
 
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...AliaaTarek5
 
Generative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdfGenerative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdfIngrid Airi González
 
Decarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityDecarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityIES VE
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxLoriGlavin3
 
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Alkin Tezuysal
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxLoriGlavin3
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxLoriGlavin3
 
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Scott Andery
 
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfSo einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfpanagenda
 
Connecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfConnecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfNeo4j
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxLoriGlavin3
 
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24Mark Goldstein
 

Recently uploaded (20)

Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directions
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examples
 
Modern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better StrongerModern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
 
2024 April Patch Tuesday
2024 April Patch Tuesday2024 April Patch Tuesday
2024 April Patch Tuesday
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
[Webinar] SpiraTest - Setting New Standards in Quality Assurance
[Webinar] SpiraTest - Setting New Standards in Quality Assurance[Webinar] SpiraTest - Setting New Standards in Quality Assurance
[Webinar] SpiraTest - Setting New Standards in Quality Assurance
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
 
Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024
 
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...
(How to Program) Paul Deitel, Harvey Deitel-Java How to Program, Early Object...
 
Generative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdfGenerative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdf
 
Decarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityDecarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a reality
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
 
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptx
 
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
 
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfSo einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
 
Connecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfConnecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdf
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
 
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
 

How to Use Open Source Technologies in Safety-critical Medical Device Platforms

  • 1. Open Source Software (OSS) and Technologies in Safety-critical Medical Device Platforms Using Open Source to Design Connected Medical Devices Shahid N. Shah, CEO
  • 2. NETSPECTIVE Who is Shahid? • Chairman, OSEHRA.org Board of Advisors • 20+ years of software engineering and multi-discipline complex IT implementations (Gov., defense, health, finance, insurance) • 12+ years of healthcare IT and medical devices experience (blog at http://healthcareguy.com) • 15+ years of technology management experience (government, non-profit, commercial) www.netspective.com Author of Chapter 13, “You’re the CIO of your Own Office” 2
  • 3. NETSPECTIVE Open source software (OSS) is in your future • You’re moving from standalone boxes to fully integrated systems • mHealth demands more interoperability • Your customers demand flexible workflows with enhanced functionality • Your customer demand data integration with their systems • Security of medical devices is under great scrutiny and excuses aren’t going to be accepted www.netspective.com 3
  • 4. NETSPECTIVE The new realities of patient populations Prevention • Education • Health Promotions • Healthy Lifestyle Choices • Health Risk Assessment Management • • Obesity Management Wellness Management • • • • • • • Assessment – HRA Stratification Dietary Physical Activity Physician Coordination Social Network Behavior Modification • • • Diabetes COPD CHF • • • • • Stratification & Enrollment Disease Management Care Coordination MD Pay-for-Performance Patient Coaching • • • • Physicians Office Hospital Other sites Pharmacology • Catastrophic Case Management Utilization Management Care Coordination Co-morbidities • • • 26 % of Population 35 % of Population 35 % of Population 4% of Population 4 % of Medical Costs 22 % of Medical Costs 37 % of Medical Costs 36 % of Medical Costs Source: Amir Jafri, PrescribeWell www.netspective.com 4
  • 5. NETSPECTIVE Wireless BAN Ecosystem is complex without OSS Source: Qualcomm www.netspective.com 5
  • 6. NETSPECTIVE Data is getting more sophisticated, analysis even more so It’s hard today but will be even harder tomorrow Economics Administrative www.netspective.com Phenotypics Behavioral Biochemical Genomics Proteomics IOT sensors 6
  • 7. NETSPECTIVE Implications of healthcare trends PPACA ACO Software Regulated IT and Systems Integration Services MU Health Home www.netspective.com PCMH mHealth DATA Evidence Based Medicine Comparative Effectiveness 7
  • 8. NETSPECTIVE What users want vs. what they’re offered Data visualization requires integration and aggregation What’s being offered to users www.netspective.com What users really want 8
  • 9. NETSPECTIVE Evolving Healthcare IT Enterprise Architecture You need to fit into a complex environment Device Teaming Cloud Services Patient Self-Management Platforms SSL VPN Patient Context Monitoring BaaS Gateway (DDS, XMPP ESB) , Device Data Data Transformation (ESB, HL7) Remote Surveillance Management Dashboards HIT Integration Report Generation Device reimbursement www.netspective.com Enterprise Data RCM, Financials, EHRs Device Management Cross Device App Workflows Device Utilization Device profitability Alarm Notifications Device Inventory 9
  • 10. • Should medical device vendors be using open source to implement their safetycritical requirements? • How about contributing to open source projects? • How about creating their own open source projects? www.netspective.com 10
  • 11. Yes! • If you’re not using open source projects in your own devices then you’re doing far more engineering work than is necessary. • If you’re not contributing to open source then you’re not making code you rely on better. • If you’re not creating open source then you’re missing a valuable marketing opportunity. www.netspective.com 11
  • 12. NETSPECTIVE Connectivity is a must, OSS is answer Most obvious benefit Least attention Most promising capability This talk focuses on connected devices www.netspective.com 12
  • 13. NETSPECTIVE Appreciate tradeoffs The more connectionfriendly a device, the harder it is to validate it Integrationfriendliness Ease of validation Lesson: Demand Testability www.netspective.com 13
  • 14. NETSPECTIVE What are we afraid of when it comes to OSS? Compliance Reliability Will the FDA and other regulators accept open source code in safetycritical systems? Is open source code safe enough for medical devices? www.netspective.com 14
  • 15. Yes, of course. Proof: we did it at American Red Cross in 1996 for a Class 3 device built on a modern enterprise IT ecosystem Lesson: Risk managers and quality leadership often use regulators as an excuse to prevent OSS use because of OSS illiteracy, not legitimate strategy or actual evidence of harm. Reality: Regulators don’t care about your use of open source, they care about safe systems that meet intended use. www.netspective.com 15
  • 16. NETSPECTIVE Code you write is not necessarily safer There is significantly more and better testing of large open source projects than you could ever do In an integrated ecosystem, you have to learn how to rely on others and do so safely and effectively Modern IT systems’ custom components www.netspective.com 16
  • 17. NETSPECTIVE It’s not as hard as we think… • Modern real-time operating systems (open source and commercial) are reliable for safety-critical medical-grade requirements. • Open standards such as TCP/IP DDS, HTTP and XMPP can , , pull vendors out of the 1980’s and into the 1990’s.  • Open source and open standards that promote enterprise IT connectivity can pull vendors into the 2010’s and beyond. www.netspective.com 17
  • 18. How to start using OSS immediately
  • 19. NETSPECTIVE Remove OSS illiteracy from decision making Understand open source licensing, remove the fear of IP loss www.netspective.com Understand where code is coming from and what test harnesses included Get in touch with the open source developers to find out the current utilization 19
  • 20. NETSPECTIVE Choose the right OSS projects Requirements traceability possible? Code reviews conducted by OSS code authors? Unit testing conducted by authors? Continuous integration system employed? Integration testing conducted? Performance testing conducted? Safety testing conducted? Security testing conducted? www.netspective.com 20
  • 21. NETSPECTIVE Engender trust in the code’s provenance Connect to the revision control system of the open source project www.netspective.com Create your own binaries Create a process to securely sign the binaries Create your own deployment packages 21
  • 22. NETSPECTIVE Integrate OSS into your QSR process Employ continuous integration (CI) for your own and OSS project components Create a process to test the binaries using code coverage tools Keep an eye on changes coming in from the source and retest regularly www.netspective.com Conduct continuous hazard and risk analysis of outside code Review your process with the compliance officers and get their regular buy in 22
  • 23. NETSPECTIVE But it’s not easy either…we need Risk Assessments Hazard Analysis Design for Testability Design for Simulations Documentation Traceability Mathematical Proofs Determinism Instrumentation Theoretical foundations www.netspective.com 23
  • 24. NETSPECTIVE OSS hazard and risk assessment • What is the intended use for the device or system? • How will the OSS product you’re planning to use going to be tied to your intended use? • What is the risk associated with the OSS product for that particular intended use? R = S h x Ph www.netspective.com 24
  • 25. NETSPECTIVE Risk is related to severity and harm R = risk Sh = severity of harm Ph = probability of harm R = S h x Ph • Harm is damage done to a person • Severity is the degree of harm done • Probability is the frequency and duration of exposure www.netspective.com 25
  • 26. NETSPECTIVE Examples of Severity & Probability Severity Probability • multiple fatalities • fatalities • severe injury (non-reversible, requires hospitalization) • moderate injury (reversible, requires hospitalization) • minor (reversible, requires first aid) • very minor (no first aid) • • • • • • • www.netspective.com Constant exposure Hourly Daily Weekly Monthly Yearly Never 26
  • 27. NETSPECTIVE Formal risk assessment methods What-if analysis Preliminary hazard analysis (PHA) Fault tree analysis (FTA) www.netspective.com Failure modes and effects analysis (FMEA) Hazard and operability studies 27
  • 28. NETSPECTIVE OSS Risk analysis steps - FMEA Define the function of the OSS product being analyzed. Identify potential failures of the OSS. Determine the causes of each failure types. Determine the effects of potential failures. Assign a risk index to each of the failure types. Determine the most appropriate corrective/preventive actions. • Monitor the implementation of the corrective/preventive to ensure that it is having the desired effect. • • • • • • www.netspective.com 28
  • 29. NETSPECTIVE Good summary of FMEA • http://en.wikipedia.org/wiki/ Failure_mode_and_effects_analysis www.netspective.com 29
  • 30. NETSPECTIVE Sampling of OSS / open standards Project / Standard Subject area D G Linux or Android Operating system   OMG DDS (data distribution service) Publish and subscribe messaging   AppWeb, Apache Web/app server   OpenTSDB Time series database  Open source project Mirth HL7 messaging engine  Built on Mule ESB Alembic Aurion HIE, message exchange  Successor to CONNECT HTML5, XMPP JSON , Various areas   Don’t reinvent the wheel SAML, XACML Security and privacy   DynObj, OSGi, JPF Plugin frameworks   www.netspective.com Comments Open standard with open source implementations Build for extensibility 30
  • 31. NETSPECTIVE OSS applicability to connectivity Physical • Wired, wireless (WiFi, cellular, etc.) Logical • Device  Gateway  Data Routers  Systems Structural • Security, Numbers, Units of Measure, etc. Semantic • Presence, Vitals, Glucose, Heartbeats, etc. www.netspective.com 31
  • 32. NETSPECTIVE OSS applicability to manageability Security • Is the device authorized? Teaming Inventory • Device grouping • Where is the device? Presence • Is a device connected? www.netspective.com 32
  • 33. NETSPECTIVE OSS enables extensible devices Legacy Devices www.netspective.com Future Devices 33
  • 34. NETSPECTIVE Shahid’s “Ultimate Connectivity Architecture” 5 Device Components Sensors Storage Display Web Server, IM Client • Presence 6 • Messaging • Registration • JDBC, Query Plugins 3rd Party Plugins App #1 App #2 7 4 Connectivity Layer (DDS, HTTP, XMPP) 3 Plugin Container 2 1 Security and Management Layer Device OS Event Architecture Location Aware (QNX, Linux, Windows) SSL VPN Healthcare Enterprise 8 Patient Context Device Gateway (DDS, ESB) Inventory Notifications Cloud Services Data Transformation (ESB, HL7) Management Dashboards www.netspective.com Workflow 9 Enterprise Data 34
  • 35. NETSPECTIVE OSS in Ultimate Architecture Core Connectivity is built-in, not added Device Components Think about Plugins from day 1 Build on Open Source Connectivity Layer (DDS, HTTP, XMPP) Plugin Container Device OS (QNX, Linux, Windows) Don’t create your own OS! www.netspective.com Security and Management Layer Create code as a last resort Security isn’t added later 35
  • 36. NETSPECTIVE OSS enables plugin architecture Device Components 3rd Party Plugins App #1 App #2 Plugins Event Architecture Location Aware Plugin Container Device OS (QNX, Linux, Windows) www.netspective.com Connectivity Layer (DDS, HTTP, XMPP) Security and Management Layer 36
  • 37. NETSPECTIVE OSS in connectivity components Surveillance & “remote display” Remote Access Alarms Device Components Design all functions as plugins Event Viewer Web Server, IM Client • Presence • Messaging • Registration • JDBC, Query Connectivity Layer (DDS, HTTP, XMPP) Plugin Container Device OS (QNX, Linux, Windows) www.netspective.com Security and Management Layer 37
  • 38. NETSPECTIVE OSS in device components Virtualize! Device Components Sensors “On Device” Workflow Patient Context, too www.netspective.com Storage Web Server, IM Client Display Event Architecture Location Aware 3rd Party Plugins Plugins Connectivity Layer (HTTP, XMPP) Plugin Container Device OS (QNX, Linux, Windows) Security and Management Layer 38
  • 39. NETSPECTIVE OSS enables enterprise integration Device Teaming Cloud Services Patient Self-Management Platforms SSL VPN Patient Context Monitoring BaaS Gateway (DDS, XMPP ESB) , Device Data Data Transformation (ESB, HL7) Remote Surveillance Management Dashboards HIT Integration Report Generation Device reimbursement www.netspective.com Enterprise Data RCM, Financials, EHRs Device Management Cross Device App Workflows Device Utilization Device profitability Alarm Notifications Device Inventory 39