| Recurring |
one_organization, multiple_organization |
(a) The software failure incident having happened again at one_organization:
- The UK government had to abandon a centralised coronavirus contact-tracing app after spending months and millions of pounds on technology that experts had warned would not work [Article 100983].
- The NHS's contact-tracing app faced challenges due to relying on a centralised database approach, which led to issues with iPhone functionality and effectiveness [Article 99691].
(b) The software failure incident having happened again at multiple_organization:
- Other countries that have made similar decisions to the UK in building centralised contact-tracing apps have faced limitations and challenges with their apps as well, such as Singapore and Australia [Article 99691].
- Italy and Germany launched their own contact-tracing apps based on the Google-Apple model, indicating a shift towards a more decentralised approach in contrast to the centralised approach taken by the UK government [Article 100983]. |
| Phase (Design/Operation) |
design, operation |
(a) The software failure incident related to the design phase can be observed in Article #100983, where the government had to abandon a centralised coronavirus contact-tracing app after spending months and millions of pounds on technology that experts had repeatedly warned would not work. The centralised version of the app, which held anonymised data in an NHS database for better tracing and data analysis, was not supported by Apple and Google, leading to its failure [100983].
(b) The software failure incident related to the operation phase is evident in Article #99691, where the NHS's contact-tracing app faced challenges in operation due to the design decisions made. The app had issues with iPhones going into a "listen-only" mode after a period of inactivity, affecting its contact-tracing function. This operational issue was exacerbated by the need for workarounds to keep iPhones registering contact events and ensuring the app remains effective in the background on both iOS and Android phones [99691]. |
| Boundary (Internal/External) |
within_system, outside_system |
(a) within_system: The software failure incident related to the NHS's contact-tracing app can be attributed to factors within the system. The centralised design of the app, which required a critical mass of Android users to ensure iPhone compatibility, led to issues with the app's functionality on iOS devices. The workaround implemented by the NHSX to create a centralised database and the decision not to use the decentralized approach recommended by Apple and Google contributed to the failure [99691].
(b) outside_system: The failure of the centralised coronavirus contact-tracing app developed by the UK government was also influenced by factors outside the system. The app's reliance on a centralised version of technology not supported by Apple and Google, as well as the limitations imposed by Apple's operating system on app functionality, were external factors that impacted the app's effectiveness [100983]. |
| Nature (Human/Non-human) |
non-human_actions, human_actions |
(a) The software failure incident occurring due to non-human actions:
- The failure of the NHS contact-tracing app was attributed to the design of Apple's iPhone operating system, which caused apps to quickly go to sleep when not in use, preventing them from being activated by Bluetooth [Article 100983].
- The centralised version of the NHS app, which relied on anonymised data stored in an NHS database for tracing and data analysis, was not supported by Apple and Google, leading to compatibility issues [Article 100983].
(b) The software failure incident occurring due to human actions:
- The UK government decided to pursue a centralised approach for the contact-tracing app despite warnings from experts that it would not work, leading to wasted time and money on a design that ultimately failed [Article 100983].
- Matt Hancock, the Health Secretary, had been enthusiastic about the centralised NHS app and had set ambitious rollout targets, but the government's insistence on this approach led to delays and eventual abandonment in favor of the Apple-Google alternative [Article 100983]. |
| Dimension (Hardware/Software) |
hardware, software |
(a) The software failure incident occurring due to hardware:
- The failure of the NHS contact-tracing app was partly attributed to hardware issues related to the design of Apple's iPhone operating system. The app only recognized 4% of Apple phones during testing on the Isle of Wight because apps quickly go to sleep on iPhones when not in use and cannot be activated by Bluetooth [Article 100983].
(b) The software failure incident occurring due to software:
- The failure of the NHS contact-tracing app was primarily attributed to software issues related to the centralised design of the app, which did not align with the privacy-first "decentralised" approach recommended by Apple and Google. The centralised design led to limitations in functionality and compatibility with Apple and Google's tools for contact tracing [Article 99691]. |
| Objective (Malicious/Non-malicious) |
non-malicious |
(a) The software failure incident related to the NHS's contact-tracing app can be categorized as non-malicious. The failure was primarily due to the decision to build a centralised app that did not align with the tools provided by Apple and Google for contact tracing [99691]. The centralised approach led to technical challenges, such as the app not being able to work effectively on iPhones due to their operating system shutting down app functions in the background, and the app only recognizing a small percentage of Apple phones during testing [100983]. The failure was a result of design choices and technical limitations rather than any malicious intent to harm the system. |
| Intent (Poor/Accidental Decisions) |
poor_decisions, accidental_decisions |
(a) The intent of the software failure incident related to poor decisions can be seen in Article #100983, where the government decided to pursue a centralised coronavirus contact-tracing app despite experts warning that it would not work. The government insisted on using a centralised version of the technology, which was not supported by Apple and Google, leading to an embarrassing U-turn after spending months and millions of pounds on a system that ultimately failed [100983].
(b) The intent of the software failure incident related to accidental decisions can be observed in Article #99691, where the NHS's contact-tracing app faced challenges due to the decision to build a centralised app instead of adopting the privacy-first "decentralised" approach recommended by Apple and Google. This decision led to workarounds and limitations in the app's functionality, ultimately impacting its effectiveness [99691]. |
| Capability (Incompetence/Accidental) |
development_incompetence |
(a) The software failure incident related to development incompetence is evident in Article #100983, where the government had to abandon a centralised coronavirus contact-tracing app after spending three months and millions of pounds on technology that experts had repeatedly warned would not work. Despite weeks of work, officials admitted that the NHS app only recognized 4% of Apple phones and 75% of Google Android devices during testing on the Isle of Wight. This failure was attributed to the design of Apple's iPhone operating system, which caused apps to quickly go to sleep when not in use, making it impossible to activate them via Bluetooth [100983].
(b) The software failure incident related to accidental factors is seen in Article #99691, where the NHS's contact-tracing app faced challenges due to the decision to build a centralised app, which led to the app not being able to use tools built by Apple and Google for contact tracing. This decision resulted in workarounds that were described as fragile, disruptive to users, and risking apps not registering contacts when they should. The workaround required Android 'herd immunity' to ensure iPhone owners remain covered by the app's contact-tracing ability, showcasing unintended consequences of the centralised approach [99691]. |
| Duration |
temporary |
The software failure incident related to the NHS's contact-tracing app can be categorized as a temporary failure. The initial centralised app designed by the UK government faced issues with recognition on different devices, particularly Apple phones and Google Android devices. Despite weeks of work, the centralised app only recognized 4% of Apple phones and 75% of Google Android devices during testing on the Isle of Wight [Article 100983]. This failure was due to the design of Apple's iPhone operating system, which caused apps to quickly go to sleep when not in use and could not be activated by Bluetooth. The centralised approach was not supported by Apple and Google, leading to the need for an alternative solution [Article 100983].
Additionally, the government had to abandon the centralised app after spending three months and millions of pounds on technology that experts had warned would not work. The Health Secretary mentioned that the government would switch to an alternative app designed by Apple and Google, which was still months away from being ready [Article 100983]. This shift indicates a temporary failure in the initial approach, leading to the need for a different solution. |
| Behaviour |
crash, omission, other |
(a) crash: The software failure incident described in Article 100983 can be categorized as a crash. The centralised coronavirus contact-tracing app developed by the UK government failed to work as intended, recognizing only 4% of Apple phones and 75% of Google Android devices during testing on the Isle of Wight. This failure led to the abandonment of the app after spending months and millions of pounds on technology that experts had warned would not work [100983].
(b) omission: The software failure incident can also be categorized as an omission. The NHS app, which was intended to trace close contacts of individuals with coronavirus symptoms using Bluetooth connectivity, failed to recognize a significant portion of devices during testing, indicating an omission in performing its intended function [100983].
(c) timing: The software failure incident does not align with the timing category as there is no indication in the articles that the system performed its intended functions either too late or too early.
(d) value: The software failure incident does not align with the value category as there is no indication in the articles that the system performed its intended functions incorrectly.
(e) byzantine: The software failure incident does not align with the byzantine category as there is no indication in the articles that the system behaved erroneously with inconsistent responses and interactions.
(f) other: The other behavior exhibited by the software failure incident is the reliance on a centralised approach for contact tracing, which led to limitations in the app's functionality and compatibility with Apple and Google systems. This decision resulted in the app not being able to perform its intended functions effectively, ultimately leading to its abandonment in favor of an alternative developed by Apple and Google [99691, 100983]. |