Departmental Papers (CIS)

Document Type

Conference Paper

Date of this Version

8-2011

Comments

Suggested Citation:
Arney, D., Venkatasubramanian, K., Sokolsky, O. and Lee, I. (2011). Biomedical Devices and Systems Security. Proc. of 33rd Annual International Conference of the IEEE Engineering in Medicine and Biology Society (EMBC '11), 2011, Boston, MA, Aug./Sept. 2011

©2011 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.

Abstract

Medical devices have been changing in revolutionary ways in recent years. One is in their form-factor. Increasing miniaturization of medical devices has made them wearable, light-weight, and ubiquitous; they are available for continuous care and not restricted to clinical settings. Further, devices are increasingly becoming connected to external entities through both wired and wireless channels. These two developments have tremendous potential to make healthcare accessible to everyone and reduce costs. However, they also provide increased opportunity for technology savvy criminals to exploit them for fun and profit. Consequently, it is essential to consider medical device security issues.

In this paper, we focused on the challenges involved in securing networked medical devices. We provide an overview of a generic networked medical device system model, a comprehensive attack and adversary model, and describe some of the challenges present in building security solutions to manage the attacks. Finally, we provide an overview of two areas of research that we believe will be crucial for making medical device system security solutions more viable in the long run: forensic data logging, and building security assurance cases.

Keywords

PRECISE_paper, PRECISE_CPS_Medical

Share

COinS
 

Date Posted: 07 September 2011

This document has been peer reviewed.