Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Security, extensibility, and redundancy in the Metabolic Operating System

Samuel T. King

TL;DR

The paper addresses secure, extensible automated insulin delivery for T1D by introducing the Metabolic Operating System (MOS), built around a BioKernel that ensures integrity and safe fallback while exposing event logs for extensibility. It emphasizes separation principles, redundancy, and a simple core algorithm to manage CGM and pump hardware, leveraging ultra-fast insulin to simplify control. In a real-world n=1 study, MOS plus the Metabolic Watchdog improved glycemic metrics (GMI) from $6.8\%$ toward the $5.7$–$5.9\%$ range and demonstrated a smaller core codebase ($4.6k$ LOC) relative to Loop, while maintaining tight control and reduced cognitive load. The work highlights practical pathways for secure, modular biohacking software with real-world usability, and argues for broader ecosystem development around MOS and similar approaches.

Abstract

People living with Type 1 Diabetes (T1D) lose the ability to produce insulin naturally. To compensate, they inject synthetic insulin. One common way to inject insulin is through automated insulin delivery systems, which use sensors to monitor their metabolic state and an insulin pump device to adjust insulin to adapt. In this paper, we present the Metabolic Operating System, a new automated insulin delivery system that we designed from the ground up using security first principles. From an architecture perspective, we apply separation principles to simplify the core system and isolate non-critical functionality from the core closed-loop algorithm. From an algorithmic perspective, we evaluate trends in insulin technology and formulate a simple, but effective, algorithm given the state-of-the-art. From a safety perspective, we build in multiple layers of redundancy to ensure that the person using our system remains safe. Fundamentally, this paper is a paper on real-world experiences building and running an automated insulin delivery system. We report on the design iterations we make based on experiences working with one individual using our system. Our evaluation shows that an automated insulin delivery system built from the ground up using security first principles can still help manage T1D effectively. Our source code is open source and available on GitHub (link omitted).

Security, extensibility, and redundancy in the Metabolic Operating System

TL;DR

The paper addresses secure, extensible automated insulin delivery for T1D by introducing the Metabolic Operating System (MOS), built around a BioKernel that ensures integrity and safe fallback while exposing event logs for extensibility. It emphasizes separation principles, redundancy, and a simple core algorithm to manage CGM and pump hardware, leveraging ultra-fast insulin to simplify control. In a real-world n=1 study, MOS plus the Metabolic Watchdog improved glycemic metrics (GMI) from toward the range and demonstrated a smaller core codebase ( LOC) relative to Loop, while maintaining tight control and reduced cognitive load. The work highlights practical pathways for secure, modular biohacking software with real-world usability, and argues for broader ecosystem development around MOS and similar approaches.

Abstract

People living with Type 1 Diabetes (T1D) lose the ability to produce insulin naturally. To compensate, they inject synthetic insulin. One common way to inject insulin is through automated insulin delivery systems, which use sensors to monitor their metabolic state and an insulin pump device to adjust insulin to adapt. In this paper, we present the Metabolic Operating System, a new automated insulin delivery system that we designed from the ground up using security first principles. From an architecture perspective, we apply separation principles to simplify the core system and isolate non-critical functionality from the core closed-loop algorithm. From an algorithmic perspective, we evaluate trends in insulin technology and formulate a simple, but effective, algorithm given the state-of-the-art. From a safety perspective, we build in multiple layers of redundancy to ensure that the person using our system remains safe. Fundamentally, this paper is a paper on real-world experiences building and running an automated insulin delivery system. We report on the design iterations we make based on experiences working with one individual using our system. Our evaluation shows that an automated insulin delivery system built from the ground up using security first principles can still help manage T1D effectively. Our source code is open source and available on GitHub (link omitted).
Paper Structure (38 sections, 11 figures)

This paper contains 38 sections, 11 figures.

Table of Contents

  1. Introduction
  2. Broader trends
  3. Problem statement, threat model, and assumptions
  4. MOS design and implementation
  5. Design principles
  6. Overall architecture
  7. The BioKernel
  8. The BioKernel UI and subsystems
  9. Keeping the BioKernel simple
  10. Managing insulin pump and CGM hardware
  11. Event logs
  12. Extending the BioKernel with Loop
  13. Apps for redundancy and refinement
  14. Humans also provide redundancy
  15. Background on T1D physiology
  16. ...and 23 more sections

Figures (11)

  • Figure 1: Overall architecture for MOS.
  • Figure 2: Dosing (bolusing) for a meal example.
  • Figure 3: The main user interface for the BioKernel.
  • Figure 4: The primary BioKernel internal subsystems.
  • Figure 5: Important glucose levels.
  • ...and 6 more figures