Security of implantable medical devices: limits, requirements, and proposals

Ellouze, Nourhene; Allouche, Mohamed; Ahmed, Habib Ben; Rekhis, Slim; Boudriga, Noureddine

doi:10.1002/sec.939

Cited by 17 publications

(13 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…To our knowledge, this is the first scoping review that specifically identifies legacy-compliant solutions to medical device security issues. Altawy and Youssef [10] and Ellouze et al [41] have discussed the concept of legacy-compliant solutions, but specifically focused on the area of implantable devices. Bennett [12] and Bisbal et al [13] examined the legacy problem from a software engineering perspective, but did not consider security or the medical domain.…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

Solutions for Mitigating Cybersecurity Risks Caused by Legacy Software in Medical Devices: A Scoping Review

et al. 2020

View full text Add to dashboard Cite

Cyberattacks against healthcare institutions threaten patient care. The risk of being targeted by a damaging attack is increased when medical devices are used which rely on unmaintained legacy software that cannot be replaced and may have publicly known vulnerabilities. This review aims to provide insight into solutions presented in the literature that mitigate risks caused by legacy software on medical devices. We performed a scoping review by categorising and analysing the contributions of a selection of articles, taken from a literature set discovered through bidirectional citation searching. We found 18 solutions, each fitting at least one of the categories of intrusion detection and prevention, communication tunnelling or hardware protections. Approaches taken include proxying Bluetooth communication through smartphones, behaviour-specification based anomaly detection and authenticating signals based on physical characteristics. These solutions are applicable to various use-cases, ranging from securing pacemakers to medical sensor networks. Most of the solutions are based on intrusion detection and on tunnelling insecure wireless communications. These technologies have distinct application areas, and the decision which one is most appropriate will depend on the type of medical device.

show abstract

Section: Discussionmentioning

confidence: 99%

“…Altawy and Youssef [10] and Ellouze et al [41] described a denial-of-service attack against the shield: because unauthorised messages are scrambled but still processed by the IMD, the IMD's battery can be exhausted by repeatedly sending it arbitrary messages.…”

Section: ) Selective Jammingmentioning

confidence: 99%

Solutions for Mitigating Cybersecurity Risks Caused by Legacy Software in Medical Devices: A Scoping Review

et al. 2020

View full text Add to dashboard Cite

show abstract

“…Implantable IoMT devices typically requires surgeries to be implanted into patients' body. Therefore, security schemes for implantable devices have restrict requirements on power consumption, communication overhead, attack resilience, and support for emergency situations [100]. In addition to the aforementioned challenges, security schemes for implantable devices must comply with restrict regulations [101].…”

Section: Security Schemes For Implantable Iomt Devicesmentioning

confidence: 99%

Security and Privacy for the Internet of Medical Things Enabled Healthcare Systems: A Survey

2019

View full text Add to dashboard Cite

With the increasing demands on quality healthcare and the raising cost of care, pervasive healthcare is considered as a technological solutions to address the global health issues. In particular, the recent advances in Internet of Things have led to the development of Internet of Medical Things (IoMT). Although such low cost and pervasive sensing devices could potentially transform the current reactive care to preventative care, the security and privacy issues of such sensing system are often overlooked. As the medical devices capture and process very sensitive personal health data, the devices and their associated communications have to be very secured to protect the user's privacy. However, the miniaturized IoMT devices have very limited computation power and fairly limited security schemes can be implemented in such devices. In addition, with the widespread use of IoMT devices, managing and ensuring the security of IoMT systems are very challenging and which are the major issues hindering the adoption of IoMT for clinical applications. In this paper, the security and privacy challenges, requirements, threats, and future research directions in the domain of IoMT are reviewed providing a general overview of the state-of-the-art approaches.

show abstract

“…Conforme Guimarães e Américo, os monitores voltados para o esporte profissional contam com: 2018, p. 61;ELLOUZE et al, 2014).…”

Section: São Exemplos De Tecnologias Vestíveis Ounclassified

Tecnologias Vestíveis E Capitalismo De Vigilância: Do Compartilhamento De Dados Sobre Saúde E a Proteção Dos Direitos Da Personalidade

Tobbin

Cardin

2021

RDGTEC

View full text Add to dashboard Cite

O presente artigo tem por objetivo analisar a utilização das tecnologias vestíveis no contexto do capitalismo de vigilância, tendo em vista os riscos de compartilhamento indevido de dados acerca da saúde e a violação de direitos da personalidade dos usuários. Para tanto, utilizou o método hipotético-dedutivo, fundamentado na revisão bibliográfica de obras, artigos, doutrina, legislação e jurisprudência. Como resultado, verificou-se que a coleta e o tratamento de dados realizados pelos wearables levantam questionamentos acerca do direito à privacidade e à autodeterminação informativa, já que tais dados podem ser monetizados pelo mercado tecnológico para fins de publicidade comportamental e online profiling.

show abstract

Security of implantable medical devices: limits, requirements, and proposals

Cited by 17 publications

References 23 publications

Solutions for Mitigating Cybersecurity Risks Caused by Legacy Software in Medical Devices: A Scoping Review

Solutions for Mitigating Cybersecurity Risks Caused by Legacy Software in Medical Devices: A Scoping Review

Security and Privacy for the Internet of Medical Things Enabled Healthcare Systems: A Survey

Tecnologias Vestíveis E Capitalismo De Vigilância: Do Compartilhamento De Dados Sobre Saúde E a Proteção Dos Direitos Da Personalidade

Contact Info

Product

Resources

About