It reportedly checks subscription upon putting the vest on and supposedly won’t turn off mid ride.
And if there’s a bug in that code, you’re fucked.
Safety features should work if everything else fails. Their failure mode can’t be “fuck it, it didn’t work”. Which is directly opposite to the failure mode of a subscription based service.
This is why:
-
The FTC needs to do its job and start outlawing all these obscene subscription business models for things that are rightfully products, not services. Where’s my goddamned First Sale Doctrine, FTC?!
-
Software Engineers working on commercial products need to be professionally licensed, so that proper consequences can be applied for unethical “fail-deadly” designs like this one.
As a software engineer, the thought of my code being responsible for someone’s safety is fucking terrifying. Thankfully I’m not in that kind of position.
From experience though, I can tell you that most of the reasons software is shitty is because of middle or upper management, either forcing idiotic business requirements (like a subscription where it doesn’t fucking belong!) or just not allocating time to button things up. I can guarantee that every engineer that worked on that thing hated it and thought it was fucking stupid.
Licensing would be overkill for most software as it’s not usually life and death. I think in this case since it’s safety equipment it really should have been rejected by NHTSA before it ever hit stores.
I can guarantee that every engineer that worked on that thing hated it and thought it was fucking stupid.
As a software engineer who was also a civil engineer-in-training before switching careers, I think one of the big overlooked benefits of being licensed is that it would give engineers leverage to push back on unethical demands by management.
-
The problem is the subscription, not how it was implemented
Yes, but also from an implementation perspective: if I’m making code that might kill somebody if it fails, I want it to be as deterministic and simple as possible. Under no circumstances do I want it:
- checking an external authentication service.
- connected to the internet in any way.
- have multiple services which interact over an API. Hell, even FFIs would be in the “only if I have to” bucket.
If the customer is dead, they definitely can’t renew.
Who wouldn’t tout your service if it saved them?
But also… why the fuck does this require a sub?
But also… why the fuck does this require a sub?
Because “fuck you, we’re rent-seeking and you can’t do anything about it,” that’s why.
The argument the company makes is that it allows them to sell the device for cheaper upfront, which means that more people can afford to have one. They sell them for $400. But also fuck them, nobody ever died from HP disabling printers.
It checks the service when booting up before a ride. After that it doesn’t connect to the internet. If you’ve gone past your grace period of 60 days it won’t boot up at all, and it will alert you that the device isn’t active.
Don’t get me wrong, I hate the idea of the subscription but it’s important to have accurate information. Did you even read the product page?
That information changes none of my issues; if you don’t see the plethora of potential implementation bugs involved, either you don’t code professionally or you shouldn’t be.
I code professionally, specifically I develop very resilient medical software. From a software perspective, as long as the developers are competent I have no issues with the device. There are so many other things you could take issue with when it comes to the vest, but I’m telling you software just isn’t one of them.
I’m sure the developers are competent, but the reason I care about the design decisions is the same reason the electric brakes on cars don’t interface with its infotainment system; the interface inherently creates opportunities for out of spec behaviour and even if the introduced risk is tiny, the consequence is so bad that it’s worth avoiding.
If you have to have an airbag be controlled by software (ideally the mechanism is physical, like a pull tab), it should be an isolated real time device with monitoring your accelerometer and triggering the airbag be it’s only jobs. If it’s also waiting to hear back from another device about whether your subscription ran out before it starts checking, the risk of failure also has to consider that triggering device.
It can be done perfectly, but it’s software so of course it has bugs.
Here’s a great vid on airbags for motorcycles
Fun fact the manual ones are better
Edit: He even mentions the one in the post about how it’s a bad idea.
That dude annoys me so much, but his content is usually pretty good. Great points on the different air bag systems.
I feel pretty much the same. I love what he’s doing. He’s doing a great job. But he is annoying.
Wow really? What do you find annoying about him?
I don’t know exactly. His delivery I guess. He seems like someone I would absolutely never want to hang out with. But his videos, the ones I’ve seen over the years, have had solid content.
Wild. I always thought he seemed fine. Pretty self-aware and just Canadian.
Here is an alternative Piped link(s):
Here’s a great vid on airbags for motorcycles
Piped is a privacy-respecting open-source alternative frontend to YouTube.
I’m open-source; check me out at GitHub.
What annoys me about this is that it implicitly says that if you have more money you deserve to be safer.
What will be interesting is how a false negative plays out. A vest fails, someone dies yet the subscription is current: how does the lawsuit play out?
See, when a life-saving device can fail due to software bugs, our brains point to malicious negligence when it does fail. It’s no longer a badly packed parachute but a company whose billing department wants to kill poor people.
It’s a subscription service for an airbag vest. They’d rather have you die than not pay for a product you already purchased. I’d say that whether or not there’s a mechanical failure, the billing department does want to kill poor people.
Limited liability. Negotiate with the family of the victim, ideally don’t pay at all if you can get away with it, and move on. Product management and marketing had a great idea to increase user retention, more in the meeting at 11.
Honestly the fact that it has code that says “under condition X, don’t save the user” is concerning in and of itself. I wouldn’t trust this thing in the first place.
First law of robotics:
Money up front.
Klim could save a lot of bad pr by just blowing the airbag anyway and sending a bill for the remaining value of the vest after the fact.
But then you’re just financing a vest and that’s not a fancy buzzword that makes the c-suite cream their pants.
Sorry grandma, you didn’t pay for your oxygen tank subscription; we are turning off the taps
How often does it check… If you’re out in the middle of nowhere and it can’t get a wifi signal is it going to let you die?
This is 100% speculation, but I wouldn’t be surprised if it checks the length of the subscription when connected to a network, then tracks that with a built in clock. There’s also incentive to frequently connect it to a network since the company constantly “updates the algorithm” it uses to detect crashes and deploy.
I suspect it would stop working once you hit the end of whatever period it knows you’re “paid up” for.