medical_electronic
Registered
Hello,
I would like to discuss my problem with one of our devices.
It is a simple class 1 medical device with a small control board with embedded software (released ~2010).
The device has a built-in actuator and can move up and down. Control is possible with a hand controller.
I am trying to bring the software documentation in line with IEC62304 section 4.4 'Legacy Software'. The device has a Top Down risk analysis prepared in accordance with ISO 14971.
Thus, in order to meet the minimum requirements of the standard I define the safety classification of the software. According to the standard:
- The probability of a software error is taken as 1.
- Only RISK CONTROL measures that have not been implemented in the SOFTWARE SYSTEM are taken into account.
I have identified all the software risks referenced in the Top Down (for example, the spontaneous movement of an actuator that is controlled by the firmware). Of course, the probability of this happening is quite low.
In the Safety Classification I have to assume that the probability of this event occurring is 100% (probability x, occurrence 5?? ).
This means that, based on the decision tree from IEC62304, my software should be classified as C (!) if there is no hardware solution to this problem.
Am I interpreting the standard and the link between IEC 62304 and ISO 14971 correctly?
Even if so, could post-production data evaluation be one of the mitigations that I can reduce the software class from C to B or from B to A?
I would like to discuss my problem with one of our devices.
It is a simple class 1 medical device with a small control board with embedded software (released ~2010).
The device has a built-in actuator and can move up and down. Control is possible with a hand controller.
I am trying to bring the software documentation in line with IEC62304 section 4.4 'Legacy Software'. The device has a Top Down risk analysis prepared in accordance with ISO 14971.
Thus, in order to meet the minimum requirements of the standard I define the safety classification of the software. According to the standard:
- The probability of a software error is taken as 1.
- Only RISK CONTROL measures that have not been implemented in the SOFTWARE SYSTEM are taken into account.
I have identified all the software risks referenced in the Top Down (for example, the spontaneous movement of an actuator that is controlled by the firmware). Of course, the probability of this happening is quite low.
In the Safety Classification I have to assume that the probability of this event occurring is 100% (probability x, occurrence 5?? ).
This means that, based on the decision tree from IEC62304, my software should be classified as C (!) if there is no hardware solution to this problem.
Am I interpreting the standard and the link between IEC 62304 and ISO 14971 correctly?
Even if so, could post-production data evaluation be one of the mitigations that I can reduce the software class from C to B or from B to A?