1172
you are viewing a single comment's thread
view the rest of the comments
[-] LodeMike@lemmy.today 104 points 9 months ago

It reportedly checks subscription upon putting the vest on and supposedly won’t turn off mid ride.

[-] Slotos@feddit.nl 240 points 9 months ago

And if there’s a bug in that code, you’re fucked.

Safety features should work if everything else fails. Their failure mode can’t be “fuck it, it didn’t work”. Which is directly opposite to the failure mode of a subscription based service.

[-] grue@lemmy.world 105 points 9 months ago* (last edited 9 months ago)

This is why:

  1. The FTC needs to do its job and start outlawing all these obscene subscription business models for things that are rightfully products, not services. Where's my goddamned First Sale Doctrine, FTC?!

  2. Software Engineers working on commercial products need to be professionally licensed, so that proper consequences can be applied for unethical "fail-deadly" designs like this one.

[-] Technus@lemmy.zip 64 points 9 months ago* (last edited 9 months ago)

As a software engineer, the thought of my code being responsible for someone's safety is fucking terrifying. Thankfully I'm not in that kind of position.

From experience though, I can tell you that most of the reasons software is shitty is because of middle or upper management, either forcing idiotic business requirements (like a subscription where it doesn't fucking belong!) or just not allocating time to button things up. I can guarantee that every engineer that worked on that thing hated it and thought it was fucking stupid.

Licensing would be overkill for most software as it's not usually life and death. I think in this case since it's safety equipment it really should have been rejected by NHTSA before it ever hit stores.

[-] grue@lemmy.world 39 points 9 months ago* (last edited 9 months ago)

I can guarantee that every engineer that worked on that thing hated it and thought it was fucking stupid.

As a software engineer who was also a civil engineer-in-training before switching careers, I think one of the big overlooked benefits of being licensed is that it would give engineers leverage to push back on unethical demands by management.

[-] tryptaminev@feddit.de 17 points 9 months ago

manager@evil.corp

Dear manager please clarify the specifications for product. From the discussions in the last design meeting i felt the specifications to potentially be ambigious about their compliance with critical safety regulation. Please reply with the clarified specifications.

[-] Technus@lemmy.zip 4 points 9 months ago

Management can always just fire the engineering team and hire one overseas. It's not like it's even that difficult to do.

[-] grue@lemmy.world 2 points 9 months ago

I don't think you understand what being licensed means. It means the state requires that people doing that job hold a license. Offshoring would become illegal.

[-] jaybone@lemmy.world 11 points 9 months ago

This is managements fault, not the engineers fault.

We have to implement the requirements we are given. If we don’t, we get fired and they hire someone else who will do it.

[-] grue@lemmy.world 8 points 9 months ago

If we don’t, we get fired and they hire someone else who will do it.

If we were licensed, any replacement would be similarly ethically bound to refuse and that tactic wouldn't work.

[-] colin@lemmy.uninsane.org 3 points 9 months ago

who's doing the licensing and do they share my ethics?

[-] Seleni@lemmy.world 7 points 9 months ago

My dad worked for AAA. Once he got a call because a lady’s car errored out and thought she didn’t have her seatbelt buckled mid-drive, so it shut the engine off. On the freeway.

Even without a subscription, failsafes should always fail safe.

[-] Slotos@feddit.nl 5 points 9 months ago

Thorium reactors have a cleverly dumb failsafe. If reactor control fails, there’s a plug that melts and drains the contents into a container that’s not fit for runoff neutron generation.

That’s an example of a failsafe that fits its purpose. It’s still possible to fuck it up, but it would take a lot of effort to do so.

[-] TheFriendlyArtificer@beehaw.org 5 points 9 months ago

Pop verification neck to continue.

[-] KISSmyOS@feddit.de 2 points 9 months ago

And if there’s a bug in that code, you’re fucked.

If there's a bug in your car's airbag, you're also fucked.

[-] Gradually_Adjusting@lemmy.world 61 points 9 months ago

The problem is the subscription, not how it was implemented

[-] apt_install_coffee@lemmy.ml 55 points 9 months ago

Yes, but also from an implementation perspective: if I'm making code that might kill somebody if it fails, I want it to be as deterministic and simple as possible. Under no circumstances do I want it:

  1. checking an external authentication service.
  2. connected to the internet in any way.
  3. have multiple services which interact over an API. Hell, even FFIs would be in the "only if I have to" bucket.
[-] Psaldorn@lemmy.world 26 points 9 months ago

If the customer is dead, they definitely can't renew.

Who wouldn't tout your service if it saved them?

But also.. why the fuck does this require a sub?

[-] grue@lemmy.world 28 points 9 months ago

But also… why the fuck does this require a sub?

Because "fuck you, we're rent-seeking and you can't do anything about it," that's why.

[-] princessnorah@lemmy.blahaj.zone 15 points 9 months ago

The argument the company makes is that it allows them to sell the device for cheaper upfront, which means that more people can afford to have one. They sell them for $400. But also fuck them, nobody ever died from HP disabling printers.

[-] poppy@lemm.ee 7 points 9 months ago

Also, if they genuinely wanted to make it more affordable up front in order to get the safety device in more hands, they could charge a chunk initially and then a regular payment plan for so many months. Not paying in perpetuity or we disable it.

[-] smitten@lemmy.blahaj.zone 1 points 9 months ago

It checks the service when booting up before a ride. After that it doesn’t connect to the internet. If you’ve gone past your grace period of 60 days it won’t boot up at all, and it will alert you that the device isn’t active.

Don’t get me wrong, I hate the idea of the subscription but it’s important to have accurate information. Did you even read the product page?

[-] apt_install_coffee@lemmy.ml 2 points 9 months ago

That information changes none of my issues; if you don't see the plethora of potential implementation bugs involved, either you don't code professionally or you shouldn't be.

[-] smitten@lemmy.blahaj.zone 1 points 9 months ago

I code professionally, specifically I develop very resilient medical software. From a software perspective, as long as the developers are competent I have no issues with the device. There are so many other things you could take issue with when it comes to the vest, but I’m telling you software just isn’t one of them.

[-] apt_install_coffee@lemmy.ml 2 points 9 months ago

I'm sure the developers are competent, but the reason I care about the design decisions is the same reason the electric brakes on cars don't interface with its infotainment system; the interface inherently creates opportunities for out of spec behaviour and even if the introduced risk is tiny, the consequence is so bad that it's worth avoiding.

If you have to have an airbag be controlled by software (ideally the mechanism is physical, like a pull tab), it should be an isolated real time device with monitoring your accelerometer and triggering the airbag be it's only jobs. If it's also waiting to hear back from another device about whether your subscription ran out before it starts checking, the risk of failure also has to consider that triggering device.

It can be done perfectly, but it's software so of course it has bugs.

this post was submitted on 18 Jan 2024
1172 points (100.0% liked)

196

16413 readers
1177 users here now

Be sure to follow the rule before you head out.

Rule: You must post before you leave.

^other^ ^rules^

founded 1 year ago
MODERATORS