From: "J. Florio" <jfflorio@erols.com>
Subject: Re: Not intended for use in medical,
Date: 1997/04/24
Date: 1997-04-24T00:00:00+00:00 [thread overview]
Message-ID: <33601B64.666B32C2@erols.com> (raw)
In-Reply-To: 3.0.32.19970423164855.00746db8@mail.4dcomm.com
Robert C. Leif, Ph.D. wrote:
> To: Tim Behrendsen, Kaz Kylheku et al.
> From: Robert C. Leif, Ph.D.
> Vice President Ada_Med
>
> The quote," Intel products are not intended for use in medical, life
>
> saving, or life sustaining applications." as you stated is in
> Pentium
> Processor Specification Update_ from Intel, January 1997. I called
> Intel.
> The document can be ordered at 800.548.4725. Intel said that there
> was no
> charge. The National 32 bit processor had a similar disclaimer. Do
> you or
> any of the other readers of Comp.Lang.Ada know of other similar
> disclaimers? Many medical instruments use Intel 486 and Pentium
> devices.
>
> This quote may provide an excellent opportunity in the medical
> device
> business, which is NOT puny. My question is, Does validation of an
> Ada
> compiler on a platform provide significant evidence that the
> processor
> produces valid object code? Would any of the other Ada test suites
> help?
> I deliberately used the word significant rather than sufficient. If
> anyone
> knows how to prove sufficiency, I would also like a comment. Any
> other
> suggestions that would permit realistic development of medical
> devices
> would be appreciated.
If one could provide such evidence (or prove it) it wouldn't solve the
problem. What you really need to do is warrent that the program does
what it's supposed to (all the compiler does is convert the instructions
from one form to another -- granted that's an opportunity for additional
errors to be injected). If you write an instruction to add 2 numbers
and you were supposed to subtract them, the compiler won't save you.
I would guess you see such disclaimers (opinion on) because the
manufacturer doesn't want to warrent that the hardware itself doesn't
have some insidious little problem (remember the big pentium flap when
they first came out?). There's more than one or two gates on those
little buggers these days! Life-critical systems need to worry about
uninterruptable power as well as their "correctness". There are some
problem domains that have made progress in proving the "correctness" of
the application (e.g. communications), but to my knowledge, most complex
systems that are life critical still focus on rigor in the development
process and test, test , test, test (e.g. space shuttle) as well as
approaches such as redundent systems, voting systems, separately
developed systems, etc. Do a search for "high availability systems" and
you'll probably come up with a few pointers....
next prev parent reply other threads:[~1997-04-24 0:00 UTC|newest]
Thread overview: 127+ messages / expand[flat|nested] mbox.gz Atom feed top
1997-04-23 0:00 Not intended for use in medical, Robert C. Leif, Ph.D.
1997-04-24 0:00 ` J. Florio [this message]
1997-04-25 0:00 ` Kevin Cline
1997-04-25 0:00 ` Robert Dewar
1997-04-25 0:00 ` Ken Garlington
1997-04-28 0:00 ` John Apa
1997-04-28 0:00 ` Robert Dewar
1997-04-29 0:00 ` Kaz Kylheku
1997-04-30 0:00 ` John Apa
[not found] ` <3367CE1E.5ED1@die_spammer.dasd.honeywell.com>
1997-05-01 0:00 ` Kaz Kylheku
1997-05-03 0:00 ` Simon Wright
1997-05-04 0:00 ` Kaz Kylheku
1997-05-04 0:00 ` Robert Dewar
1997-05-04 0:00 ` Richard Kenner
1997-05-05 0:00 ` Kaz Kylheku
1997-05-06 0:00 ` Kaz Kylheku
1997-05-06 0:00 ` Robert A Duff
1997-05-07 0:00 ` Kaz Kylheku
1997-05-08 0:00 ` Robert A Duff
1997-05-07 0:00 ` Robert Dewar
1997-05-08 0:00 ` Robert A Duff
1997-05-09 0:00 ` Robert I. Eachus
1997-05-11 0:00 ` Robert Dewar
1997-05-11 0:00 ` Matthew Heaney
1997-05-12 0:00 ` Robert Dewar
1997-05-12 0:00 ` Matthew Heaney
1997-05-13 0:00 ` Jon S Anthony
1997-05-13 0:00 ` Matthew Heaney
1997-05-14 0:00 ` Robert Dewar
1997-05-14 0:00 ` Robert Dewar
1997-05-14 0:00 ` Nick Roberts
1997-05-14 0:00 ` Robert Dewar
1997-05-14 0:00 ` Robert Dewar
1997-05-15 0:00 ` W. Wesley Groleau (Wes)
1997-05-12 0:00 ` Robert I. Eachus
1997-05-13 0:00 ` Robert Dewar
1997-05-14 0:00 ` Nick Roberts
1997-05-14 0:00 ` Robert Dewar
[not found] ` <01bc6182$30e3a7c0$LocalHost@xhv46.dial.pipex.com>
1997-05-16 0:00 ` Robert Dewar
1997-05-16 0:00 ` Robert A Duff
1997-05-16 0:00 ` Robert I. Eachus
1997-05-18 0:00 ` Nick Roberts
1997-05-18 0:00 ` Matthew Heaney
1997-05-19 0:00 ` Robert I. Eachus
1997-05-19 0:00 ` Matthew Heaney
1997-05-20 0:00 ` Nick Roberts
1997-05-20 0:00 ` Matthew Heaney
1997-05-21 0:00 ` Dale Stanbrough
1997-05-19 0:00 ` Robert A Duff
1997-05-08 0:00 ` Kaz Kylheku
1997-05-08 0:00 ` Robert Dewar
1997-05-09 0:00 ` Kaz Kylheku
1997-05-12 0:00 ` W. Wesley Groleau (Wes)
1997-05-12 0:00 ` John G. Volan
1997-05-14 0:00 ` Nick Roberts
1997-05-14 0:00 ` Robert Dewar
1997-05-14 0:00 ` Jeff Carter
[not found] ` <dewar.863632434@merv>
1997-05-15 0:00 ` Kaz Kylheku
1997-05-18 0:00 ` Robert Dewar
1997-05-15 0:00 ` Kaz Kylheku
1997-05-08 0:00 ` John G. Volan
1997-05-10 0:00 ` Robert Dewar
1997-05-10 0:00 ` John G. Volan
1997-05-11 0:00 ` Robert Dewar
1997-05-11 0:00 ` John G. Volan
1997-05-11 0:00 ` Robert A Duff
1997-05-12 0:00 ` Robert Dewar
1997-05-12 0:00 ` John G. Volan
1997-05-11 0:00 ` John G. Volan
1997-05-11 0:00 ` Robert Dewar
1997-05-12 0:00 ` John G. Volan
1997-05-12 0:00 ` Robert Dewar
1997-05-17 0:00 ` Robert I. Eachus
[not found] ` <dewar.863877808@merv>
1997-05-17 0:00 ` Robert Dewar
1997-05-17 0:00 ` Jon S Anthony
1997-05-21 0:00 ` Syntax for tagged record types (was Re: Not intended for use in medical,) Ben Brosgol
1997-05-20 0:00 ` Matthew Heaney
1997-05-21 0:00 ` Syntax for tagged record types and class types Mats Weber
1997-05-21 0:00 ` Matthew Heaney
1997-05-22 0:00 ` Mats Weber
1997-05-27 0:00 ` Tucker Taft
1997-05-30 0:00 ` Mats.Weber
1997-05-22 0:00 ` Samuel A. Mize
1997-05-22 0:00 ` Samuel A. Mize
1997-05-23 0:00 ` Mats Weber
1997-05-21 0:00 ` Syntax for tagged record types (was Re: Not intended for use in medical,) Jon S Anthony
1997-05-21 0:00 ` Matthew Heaney
1997-05-22 0:00 ` Robert I. Eachus
1997-05-25 0:00 ` Matthew Heaney
1997-05-28 0:00 ` Robert I. Eachus
1997-05-23 0:00 ` Jon S Anthony
1997-05-23 0:00 ` Simon Wright
1997-05-23 0:00 ` Matthew Heaney
1997-05-25 0:00 ` Jon S Anthony
1997-05-28 0:00 ` Syntax for tagged record types (was Re David Kristola
[not found] ` <mheaney-ya023680002005972314260001@news.ni.net <mheaney-ya023680002105972302430001@news.ni.net>
1997-05-22 0:00 ` Syntax for tagged record types (was Re: Not intended for use in medical,) Robert A Duff
1997-05-22 0:00 ` John G. Volan
1997-05-23 0:00 ` Jon S Anthony
1997-05-23 0:00 ` Matthew Heaney
1997-05-23 0:00 ` Jon S Anthony
1997-05-23 0:00 ` Matthew Heaney
1997-05-25 0:00 ` Robert Dewar
1997-05-25 0:00 ` Jon S Anthony
1997-05-27 0:00 ` Ray Blaak
1997-05-23 0:00 ` John G. Volan
1997-05-24 0:00 ` Robert A Duff
1997-05-24 0:00 ` Matthew Heaney
1997-05-28 0:00 ` Robert I. Eachus
1997-05-25 0:00 ` Jon S Anthony
1997-05-12 0:00 ` Not intended for use in medical, John G. Volan
1997-05-12 0:00 ` Language Design Mistakes (was "not intended...") W. Wesley Groleau (Wes)
1997-05-13 0:00 ` Robert Dewar
1997-05-13 0:00 ` W. Wesley Groleau (Wes)
1997-05-13 0:00 ` Robert A Duff
1997-05-14 0:00 ` Robert Dewar
1997-05-04 0:00 ` Not intended for use in medical, Robert Dewar
1997-05-04 0:00 ` Richard Kenner
1997-04-28 0:00 ` John M. Mills
1997-04-30 0:00 ` Larry Kilgallen
1997-05-02 0:00 ` Nick Roberts
-- strict thread matches above, loose matches on Subject: below --
1997-04-25 0:00 Robert C. Leif, Ph.D.
1997-05-12 0:00 Marin David Condic, 561.796.8997, M/S 731-93
1997-05-13 0:00 ` Robert Dewar
1997-05-14 0:00 tmoran
1997-05-14 0:00 Marin David Condic, 561.796.8997, M/S 731-93
1997-05-14 0:00 Marin David Condic, 561.796.8997, M/S 731-93
1997-05-19 0:00 Robert C. Leif, Ph.D.
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox