The Community for Technology Leaders
Green Image
Issue No. 06 - Nov.-Dec. (2012 vol. 10)
ISSN: 1540-7993
pp: 70-73
Oleg Sokolsky , University of Pennsylvania
Krishna K. Venkatasubramanian , Worcester Polytechnic Institute
Eugene Y. Vasserman , Kansas State University
Insup Lee , University of Pennsylvania
ABSTRACT
Interoperable medical devices (IMDs) face threats due to the increased attack surface presented by interoperability and the corresponding infrastructure. Introducing networking and coordination functionalities fundamentally alters medical systems' security properties. Understanding the threats is an important first step in eventually designing security solutions for such systems. Part 2 of this two-part article defines a failure model, or the specific ways in which IMD environments might fail when attacked. An attack-consequences model expresses the combination of failures experienced by IMD environments for each attack vector. This analysis leads to interesting conclusions about regulatory classes of medical devices in IMD environments subject to attacks. Part 1 can be found here: http://doi.ieeecomputersociety.org/10.1109/MSP.2012.128.
INDEX TERMS
Medical services, Biomedical equipment, Failure analysis, Computer security, Interoperability, IMD, interoperable medical devices, medical devices, computer security, interoperability, Integrated Clinical Environment, ICE, attack model, attack vectors
CITATION
Oleg Sokolsky, Krishna K. Venkatasubramanian, Eugene Y. Vasserman, Insup Lee, "Security and Interoperable-Medical-Device Systems, Part 2: Failures, Consequences, and Classification", IEEE Security & Privacy, vol. 10, no. , pp. 70-73, Nov.-Dec. 2012, doi:10.1109/MSP.2012.153
108 ms
(Ver )