By

Alan Kusinitz
09
Apr

FDA submission communications guidance

April 9, 2014
/docs/FDApremarketReviewCommunicationsGuidance040414.pdf
Read More
07
Apr

ONC FDASIA Draft Report Presentation

April 7, 2014
The Director, Office of Policy and Planning, of the Office of the National Coordinator for Health Information Technology provided an overview presentation on ONC’s perspective on the FDASIA draft report. The slides are at the following link: FDASIA-HITDraftReportOverview0414 As with all presentations SoftwareCPR reminds readers to refer to the actual source documentation, in this case the...
Read More
03
Apr

FDASIA Draft Health IT Regulatory Strategy

April 3, 2014
The FDA released its anticpated draft report on regulation of Health IT. This report includes a risk-based regulatory framework for health information technology (health IT) that is a step towards clarifying what software will be actively regulated by FDA. The report was developed by the U.S. Food and Drug Administration in coordination with the Health...
Read More
31
Mar

GM Safety Recall

March 31, 2014
The Wall Street Journal reports that “the top federal auto-safety regulator will defend his agency before Congress on Tuesday, telling lawmakers that General Motors had “critical information” that would have helped it identify a defect earlier in the Chevrolet Cobalt and other vehicles and might have changed the agency?s course in investigating the problems.In prepared...
Read More
25
Mar

FDA Premarket submission Cybersecurity Information

March 25, 2014
In a new draft guidance (for electrosurgical devices but in our opinion representative of information needed for other devices) FDA stated that cybersecuirty information including but not limited to the following should be provided: Confidentiality assures that no unauthorized users have access to the information. Integrity is the assurance that the information is correct –...
Read More
25
Mar

FDA-Premarket Submission Cybersecurity Info Draft

March 25, 2014
In a new draft guidance (for electrosurgical devices; but in our opinion representative of information needed for other devices) FDA stated that cybersecurity information including but not limited to the following should be provided: Confidentiality assures that no unauthorized users have access to the information. Integrity is the assurance that the information is correct –...
Read More
24
Mar

FDA Draft Guidance for Electro-Surgical Devices

March 24, 2014
http://www.fda.gov/medicaldevices/deviceregulationandguidance/guidancedocuments/ucm383206.htm#s5
Read More
22
Mar

White Paper Compliant Use-Microsoft Visual Studio

March 22, 2014
The link provided is to a white paper prepared by Northwest Cadence regarding use of Microsoft Visual Studio to aid in compliance with FDA requirements. Food and Drug Administration (FDA) Compliance with Visual Studio 2010
Read More
06
Mar

NIST Framework Infrastructure Cybersecurity

March 6, 2014
http://www.nist.gov/cyberframework/.
Read More
06
Mar

ONC Proposed 2015 HealthIT EHR rule

March 6, 2014
http://www.healthit.gov
Read More
06
Mar

ISO 13485 Medical Devices QMS Draft for Vote

March 6, 2014
There is a new draft for vote of ISO 13485 Medical Devices – Quality Management systems – requirements for regulatory purposes. This version updates the references to ISO 9001 to the 2008 version. Some new requirements include: A requirement for a risk management process has been added in the product realization phase and ISO 14971...
Read More
06
Mar

ONC Proposed 2015 HealthIT EHR Rule

March 6, 2014
The Office of National Coordinator for Health Information Technology published a proposed rule for Voluntary 2015 Edition Electronic Health Record Certification Criteria; Interoperability Updates and Regulatory Improvements. The proposed rule eliminates the “complete EHR” designation, separates the content and transport certification criteria and announces a more frequent certification rule making process. The proposed rule also...
Read More
01
Mar

WiFi Network Attacking Virus

March 1, 2014
http://tinyurl.com/n23tt3j
Read More
01
Mar

FDA: Requests for Feedback on Submissions Guidance

March 1, 2014
/docs/FDApresubmissionFeedbackGudiance.pdf
Read More
25
Feb

IT Network Assessment Article using IEC 80001-1

February 25, 2014
AAMI recently published “Assessing a Hospital’s Medical IT Network Risk Management Practice with 80001-1” in Biomedical Instrumentation & Technology (BI&T). The article reports on an actual hospital network/health IT assessment using 80001-1 as one of the tools for the assessment.
Read More
25
Feb

Safety Assurance Case Article

February 25, 2014
Sherman Eagles of SoftwareCPR co-authored AAMI’s recently published article “Reducing Risks and Recalls: Safety Assurance Cases For Medical Devices” in the January/February 2014 issue of BI&T (Biomedical Instrumentation & Technology; a monthly, peer-reviewed journal from the Association for the Advancement of Medical Instrumentation). The full article is posted with permission at the link provided. Any...
Read More
24
Feb

Apple defect IOS defect – static analysis

February 24, 2014
http://tinyurl.com/lqw6oyu
Read More
15
Feb

Upgrading your device to use Windows 8

February 15, 2014
/docs/MarsCodeFebruary2014.pdf
Read More
14
Feb

NASA Software Verification Article

February 14, 2014
The latest ACM Journal has an interesting article on software verification at NASA JPL for the Mars Curiosity Rover at the link provided: Mars Code February 2014
Read More
09
Feb

Health IT Safety Guides

February 9, 2014
A new set of guides and interactive tools to help health care providers more safely use electronic health information technology products, such as electronic health records (EHRs), are now available at the link provided. The Office of the National Coordinator for Health Information Technology (ONC) at HHS released the Safety Assurance Factors for EHR Resilience...
Read More
09
Feb

NIST Cybersecurity Framework

February 9, 2014
NIST received comments on the Preliminary Cybersecurity Framework for improving critical infrastructure cybersecurity and is updating the framework. They have announced that the final version (Version 1.0) will be released on February 13. When it is released, the Final Framework will be posted at NIST.
Read More
06
Feb

FDA Compliance and Inspection Reorganization

February 6, 2014
http://www.aami.org/news/2014/020514_FDA_Overhaul_Inspection_Compliance_Activities.html
Read More
03
Feb

Essential Requirements Confusion – 60601-1 3rd Ed.

February 3, 2014
SoftwareCPR comments on common confusion: Struggling with Essential Requirements? Many manufacturers faced with compliance to the 3rd edition of 60601-1 do not understand which of their product requirements meet the essential requirements definition. Confusion arises over the actual risk control measures designed into the system and the requirements for the “performance of a clinical function...
Read More
03
Feb

Essential Requirements Confusion – 60601-1 3rd Ed

February 3, 2014
http://www.ibm.com/developerworks/library/j-fuzztest/index.html
Read More
03
Feb

Fuzz testing article

February 3, 2014
The link provided is to an article on Fuzz testing. This type of testing involves injecting bad data to challenge your applications and safeguards. This type of testing can be important to verify risk control measures and data integrity checks are verified. The name Fuzz testing is a fairly recent moniker for techniques that have...
Read More
21
Jan

Apple meets with FDA

January 21, 2014
http://wallstcheatsheet.com/stocks/more-apple-iwatch-clues-fda-meeting-and-healthbook-app.html
Read More
16
Jan

FDA Draft Computational Models Submission Guidance

January 16, 2014
/docs/FDAComputationalModelsDraftGuidance0114.pdf
Read More
16
Jan

AAMI Quality System Benchmarking Tool

January 16, 2014
http://www.aami.org/QMS/
Read More
16
Jan

AAMI article on FDA UDI Accredited Organizations

January 16, 2014
http://www.aami.org/news/2014/011514_FDA_Names_Issuing_Agencies_for_UDI.html
Read More
15
Jan

FDA Software Recall Article

January 15, 2014
Lisa Simone, a biomedical software engineer at FDA, published an article in the Biomedical Instrumentation & Technology Journal (Nov-Dec 2013) with information on an analysis of historical software related recalls using internal information at FDA as well as other sources. The article breaks down the recalls by year and product type. She investigated the years...
Read More
14
Jan

Prescription Mobile App for Diabetes

January 14, 2014
http://www.welldoc.com
Read More
12
Jan

H.810 Interoperability for Personal Health Systems

January 12, 2014
The International Telecommunication Union (ITU) has adopted the Continua Design Guidelines (CDG) that contain specifications to ensure the interoperability of devices used for applications monitoring personal health (Recommendation ITU-T H.810 Interoperability design guidelines for personal health systems). ITU-T H.810 is available at the link provided: http://www.itu.int/rec/T-REC-H.810-201312-I
Read More
10
Jan

A. Kusinitz selected for AAMI nominating committee

January 10, 2014
The Association for the Advancement of Medical Instrumentation selected Alan Kusinitz (Managing Partner of SoftwareCPR) to join its board member nominating committee. Alan has contributed to standards development and training programs for AAMI over many years in the interest of protecting public health.
Read More
09
Jan

NIST Preliminary Cybersecurity Framework

January 9, 2014
http://www.nist.gov/itl/upload/preliminary-cybersecurity-framework.pdf
Read More
06
Jan

FDA 510(k) Submission Process Timeline/Overview

January 6, 2014
http://tinyurl.com/nl9v9gv
Read More
05
Jan

U.S. Government Health IT Website

January 5, 2014
The U.S. Health and Human Services Office of the National Coordinator for Health Information Technology (ONC) maintains a website at the link provided. This website includes information and updates on Health IT and Electronic Medical Records programs for software that often is not considered a Medical Device and not regulated by the U.S. FDA.
Read More
04
Jan

IEC Evaluation of Risk Management

January 4, 2014
IECEE published Document OD-2044 Ed. 2.2, Evaluation of Risks Management in medical electrical equipment according to IEC 60601-1 and IEC/ISO 80601-1. The procedure intends to provide a uniform approach to the Certification Body Testing Laboratory and Manufacturer on assessment and documentation of compliance with the relevant clauses of IEC 60601 standard series related to the...
Read More
31
Dec

$Warning Letter Excerpts- Jan 2012 thru 2013$

December 31, 2013,
This content is only available to Premium and higher subscribers.  See our Subscribe page for information on subscriptions. It contains all software and computer related warning letter excerpts included on this site. Some of the newest warning letters on the site may not be included since we only update this comprehensive document periodically. This compilation is provided...
Read More
20
Dec

AAMI’s most popular 2013 TIR – Agile

December 20, 2013
AAMI announced that TIR45-2012 “Guidance on the use of agile practices in the development of medical device software” was their most popular TIR for 2013. This document was developed with the participation of FDA and addresses how Agile Methods can be use in compliance with FDA medical device regulations for software. Brian Pate and Alan...
Read More
19
Dec

FDA electronic submission security breach

December 19, 2013
http://in.reuters.com/article/2013/12/18/cyberattack-fda-drugmakers-idINDEE9BH00N20131218
Read More
09
Dec

IMDRF Standalone Software Key Definitions

December 9, 2013
The International Medical Device Regulators Forum (IMDRF) issued a final document “Software as a Medical Device(SaMD): Key Definitions” on December 9, 2013. IMDRF SaMD def
Read More
27
Nov

Congressional hearing on SW as a Device

November 27, 2013
http://mobihealthnews.com/27563/in-tense-hearing-congressman-declares-software-is-not-a-medical-device/
Read More
14
Nov

FDA Draft Guidance Development Tools Qualification

November 14, 2013
http://1.usa.gov/18AANxZ
Read More
12
Nov

SoftwareCPR Requirements Quality Checklist

November 12, 2013
The document at the link provided is a short checklist for helping ensure or assess requirements quality. It is an educational aid to be used only by knowledgeable individuals and should not be used blindly or considered comprehensive. This was prepared by Brian Pate with input from Alan Kusinitz. RequirementQualityChecklist  
Read More
05
Nov

FDA CDRH Cybersecurity Webpage

November 5, 2013
FDA’s Device Center added a dedicated webpage on Cybersecurity for medical devices in its connected health section.
Read More
26
Oct

US Congress Bill for Medical software Oversight

October 26, 2013
Oct 22, 2013 press release from the office of Conressman Marsha Blackburn:”Congressman Marsha Blackburn (R-TN07) joined Representatives Gene Green (D-TX29), Dr. Phil Gingrey (R-GA11), Diana DeGette (D-CO01), Greg Walden (R-OR02), and G. K. Butterfield (D-NC01) today in introducing the Sensible Oversight for Technology which Advances Regulatory Efficiency (SOFTWARE) Act to provide regulatory clarity regarding mobile...
Read More
26
Oct

FDA DSMICA name change

October 26, 2013
http://www.fda.gov/MedicalDevices/DeviceRegulationandGuidance/default.htm
Read More
24
Oct

SoftwareCPR.com October 2013 Newsletter

October 24, 2013
This SoftwareCPR.com newsletter lists items added to the website from 7/22/2013 to 10/24/2013. It serves as an easy reference to find new or updated items that may be of interest to you and provides a full index of SoftwareCPR educational items. You can click on sections of the document and the related web page should...
Read More
24
Oct

Sampling Tables

October 24, 2013
If sample sizes need to be determined there are many statistical methods and assumptions related to this so decisions should be carefully considered. Two of the most commonly used sample tables are ISO 2859 for attibutes and ISO 3951 for variables.
Read More
24
Oct

ISO 62366 and IEC 60601-1-6 Amendments

October 24, 2013
The amendments to ISO 62366 and IEC 60601-1-6 were approved unanimously. The amendment to 62366 introduces requirements for legacy products that were created prior to the adoption of ISO 62366 and the amendment to 60601-1-6 clarifies the elements of the usability engineering process that are required for compliance with the IEC 60601 series
Read More
1 4 5 6 7 8 18

SoftwareCPR Training Courses:

IEC 62304 and other emerging standards for Medical Device and HealthIT Software

Our flagship course for preparing regulatory, quality, engineering, operations, and others for the activities and documentation expected for IEC 62304 conformance and for FDA expectations. The goal is to educate on the intent and purpose so that the participants are able to make informed decisions in the future.  Focus is not simply what the standard says, but what is meant and discuss examples and approaches one might implement to comply.  Special deep discount pricing available to FDA attendees and other regulators.

3-days onsite with group exercises, quizzes, examples, Q&A.

Instructor: Brian Pate

Next public offering:  TBD

Email training@softwarecpr.com to request a special pre-registration discount.  Limited number of pre-registration coupons.

Registration Link:

TBD

 

 

Being Agile & Yet Compliant (Public or Private)

Our SoftwareCPR unique approach to incorporating agile and lean engineering to your medical device software process training course is now open for scheduling!

  • Agile principles that align well with medical
  • Backlog management
  • Agile risk management
  • Incremental and iterative software development lifecycle management
  •  Frequent release management
  • And more!

2-days onsite (4 days virtual) with group exercises, quizzes, examples, Q&A.

Instructors: Mike Russell, Ron Baerg

Next public offering: March 7 & 28, 2024

Virtual via Zoom

Registration Link:

Register Now

 

 

Medical Device Cybersecurity (Public or Private)

This course takes a deep dive into the US FDA expectations for cybersecurity activities in the product development process with central focus on the cybersecurity risk analysis process. Overall approach will be tied to relevant standards and FDA guidance documentation. The course will follow the ISO 14971:2019 framework for overall structure but utilize IEC 62304, IEC 81001-5-1, and AAMI TIR57 for specific details regarding cybersecurity planning, risk characterization, threat modeling, and control strategies.

2-days onsite with group exercises, quizzes, examples, Q&A.

Instructor: Dr Peter Rech, 2nd instructor (optional)

Next public offering:  TBD

Corporate Office

15148 Springview St.
Tampa, FL 33624
USA
+1-781-721-2921
office@softwarecpr.com
Partners located in the US (CA, FL, MA, MN, TX) and Canada.