HOME  |  NEWS  |  BLOGS  |  MESSAGES  |  FEATURES  |  VIDEOS  |  WEBINARS  |  RESOURCE CENTER  |  INDUSTRIES
REGISTER   |   LOGIN   |   HELP
Blogs
Guest Blogs

Medical Device Vulnerabilities: What to Protect & How to Protect It

NO RATINGS

Each of these hardware features poses some inherent risk. The utility of these features is predicated entirely on standardization -- which means each of these technologies is readily available to potential malicious actors.

In most cases, it is not practical to reinvent data storage or transport technologies as alternatives to USB, WiFi, BT, or Ethernet. Typical strategies for reducing these risks include device pairing, password protection, data encryption, and data format. Though the scope of this article does not allow an in-depth exploration of all possible mitigation measure, we’ll review several of these briefly.

Device pairing
Device pairing is a method (familiar from BT) that requires specific instances of a device (i.e. a particular sensor, a particular WiFi hub, a particular PC, etc.) and limits access to the device only to explicitly paired devices. This strategy can be layered on top of communication between any pair of devices where the protocol already provides a handshake that shares device ID, or where it is possible to add some custom software to share and record device IDs and authentication.

It is also possible to implement pairing via a back-end service, accessible from the host device, that stores approved pairings in a single database. One advantage of a global database (similar to IMEI numbers for cellphones) is that it allows early detection of counterfeit devices (duplicate IDs). Of course, one disadvantage is that it requires a convenient connection between the host device and the back-end service, something that is not always possible or practical, especially in countries with underdeveloped infrastructure or technologically reluctant or low-income patients without easy Internet access or reliable phone service.

Password protection
Passwords are a valuable tool for preventing unauthorized access, and can be implemented in a wide range of schemes that balance between usability, convenience, and security.

Data encryption
Data encryption might be considered passé as the increase in computing power and the increased sophistication of factorization techniques has made public key encryption methods subject to some attacks. DI Management offers a good description of some of the mathematics and weaknesses behind public key encryption and RSA, in particular. Additionally, PKI methods require additional computational power to encrypt and decrypt data that may not be practical in all circumstances.

Data formats
Data formats is likely to be considered by many the most naïve method in this list. However, it is worth mentioning at least partly because it is naïve, relatively easy to implement, and can provide some deterrent for the most casual malicious actors. This can be as simple as defining custom messages to communicate via WiFi, Ethernet, ZigBee, or using a binary file format rather than a more convenient text-based file format. It could also be as elaborate as a custom file system to protect data, a custom USB class, or a new set of op-codes and an interpreter to protect company IP included in the software executable image.

Conclusion
This overview of four well-known techniques is hardly an exhaustive treatment of these techniques, and there are others (signing, certificates, custom bearers, biometrics, redundant authentication, physical keys) that are also valuable tools that can be used appropriately in some circumstances.

The enhancements from new technology to patient safety, treatment efficacy, and the user experience for both patients and healthcare professionals are significant. Innovative companies will find ways to incorporate these technologies to increase the value proposition of their product offerings. To be competitive, device manufacturers will need to find ways to utilize these technologies effectively and address the associated security issues. The good news is that security issues can be addressed by a combination of mitigations and product requirements.

Alan Walsh is director of northeast software engineering for Logic PD.

Related posts:

< Previous Page 2 / 2
View Comments: Newest First|Oldest First|Threaded View
Page 1/2  >  >>
tekochip
User Rank
Platinum
Unique Data Format
tekochip   4/4/2013 3:29:45 PM
NO RATINGS
Using a unique data format is an often overlooked area of security. Simply packing bytes and using bit fields not only makes the data packet smaller, but does prevent all bit the technically savvy from monitoring the data.


Nancy Golden
User Rank
Platinum
Re: Layered Strategies and the Need For It
Nancy Golden   4/4/2013 2:53:19 PM
NO RATINGS
I certainly see your point, Alan. Current trends are taking technology usage out of the hands of specialists and into those of less technical users who may inadvertently create a security breach that allows sensitive information to either be accessed or corrupted. Networking is definitely on the increase in medical applications for easier sharing of data - I can see how this increases the need for security...

Alan Walsh
User Rank
Iron
Regarding cost of medical devices
Alan Walsh   4/4/2013 2:50:17 PM
NO RATINGS
Thanks all for your comments on the article.  Apologies for the delay in responding.  I lost track of when the article was going live.  I think there are three main contributors to the cost of medical devices.  One is definitely the higher development costs to meet regulatory and safety requirements.  However the "typical" medical device takes much less overall cost to develop than the iPhone for example.  Liability is another big piece, and I think the third important piece is the relatively low volumes.  At Logic PD I have worked with a variety of very recognizable device manufacturers, and volumes for some of the devices that we've worked on with large-scale development efforts can be in the 100's per year.  If you sell only about 1,000 in ten years every million you spend on development adds $1000 to the cost of each unit.  Such low volumes also increases the cost of the components that go into the device (buying a million memory chips is a much lower unit cost than buying 100).

Alan Walsh
User Rank
Iron
Re: Layered Strategies and the Need For It
Alan Walsh   4/4/2013 2:43:53 PM
NO RATINGS
Nancy, first off apologies for the delay in responding.  I lost track of when the article was going live.  Absolutely most of what I described is generally applicable to consumer devices as well as medical devices.  Device and information security is generally a fairly mature and active area of development, and I was trying to illustrate some of the areas where medical device designers and manufacturers should be paying more attention to security, in an environment that historically has had fewer security concerns (non-networked devices, used in controlled environments, by trained health care professionals).

Alan Walsh
User Rank
Iron
Re: Malicious Intent
Alan Walsh   4/4/2013 2:41:11 PM
NO RATINGS
Greg, first off apologies for the delay in responding.  I lost track of when the article was going live.  I agree completely.  The focus of the article was intended to be FDA regulated devices, not so much data protection that would be governed by HIPAA.  In fact I was motivated to write because of the reports in 2011 that an insulin pump had been successfully hacked, and was able to be programmed maliciously over a wireless connection.

Alan Walsh
User Rank
Iron
Re: Secure OS?
Alan Walsh   4/4/2013 2:36:01 PM
NO RATINGS
Charles, first off apologies for the delay in responding.  I lost track of when the article was going live.  The level of level of security depends on the safetly classification of the device.  In cases of lowest patient risk something like SELinux or SEAndroid (Security Ehanced) may be appropriate.  In cases of higher risk most closed source OS options that offer packages specifically for medical device development will be closed-source, and provide an appropriate level of security as a starting point.  In terms of networked devices one aspect of security outside scope of my post is IT policy.  The range and nature of devices that connect to your network, and whether or not persistent storage is all encrypted, and whether it's possible to install new apps, etc all contribute to overall security.

Greg M. Jung
User Rank
Platinum
Malicious Intent
Greg M. Jung   2/27/2013 8:18:27 PM
NO RATINGS
From a patient safety standpoint, I'm not as concerned with the pirating of medical information as I am about a hacker who infiltrates the medical device with malicious intent.  I think we should consider ways to mitigate hacker risk if a medical device is connected to a network and could be vulnerable to an attack on its operating system (where applicable).

Charles Murray
User Rank
Blogger
Re: Valuable information
Charles Murray   2/25/2013 7:47:58 PM
Good point, NadineJ. Hackers could misuse information about communicable diseases and psychiatric treatment (among other things) to cause to a great deal of trouble for unsuspecting patients.  

Ann R. Thryft
User Rank
Blogger
Re: Valuable information
Ann R. Thryft   2/20/2013 5:38:28 PM
NO RATINGS
The high cost of medical devices is due in part to a longer history of liability problems than of leaked data, a much more recent concern. Other factors like very high performance and the high cost of middlemen no doubt contribute yet more cost. But I think Cabe's point about leaked data is a good one--that's probably going to be a contributing factor to higher device costs in the near future.

Cabe Atwell
User Rank
Blogger
Re: Valuable information
Cabe Atwell   2/20/2013 4:51:06 PM
NO RATINGS
If medical history wasn't important, politicians wouldn't get so worried over it. I say leaked data is a big deal.

C

Page 1/2  >  >>
Partner Zone
More Blogs from Guest Blogs
In a world that's going green, industrial operations have a problem: Their processes involve materials that are potentially toxic, flammable, corrosive, or reactive. If improperly managed, this can precipitate dangerous health and environmental consequences.
An analysis of what’s needed to implement Design for Disassembly and Design for Recycling results in eight strategies engineers can use to design an intentional end-of-life stage into their products.
Government regulations, coupled with growing consumer sensitivity about data and identity theft, require that data storage organizations demonstrate proper protection and due diligence in protecting sensitive information stored inside datacenter enclosures.
On-machine motion solutions have helped many OEMs address seemingly impossible tasks.
When a crane doesn't have a monitoring system, crane owners schedule service every six months and simply scrap the parts they replace, even if a part has had little use and doesn't need replacing. This can cost thousands.
Design News Webinar Series
5/22/2013 9:00 a.m. California / 12:00 p.m. New York / 5:00 p.m. London
5/15/2013 11:00 a.m. California / 2:00 p.m. New York / 7:00 p.m. London
5/29/2013 11:00 a.m. California / 2:00 p.m. New York / 7:00 p.m. London
5/30/2013 11:00 a.m. California / 2:00 p.m. New York / 7:00 p.m. London
Resource Center
Sponsored content
More Resource Center
Blogs from Our Sponsors
From Dell / Intel®
New Paradigms in Design Work
 Scott Hamilton, vertical market strategist for Dell Precision workstations, 5/2/2013    3
Early in my career, I worked as a draftsman and remember the days of drawing on vellum with numbered pencils and Mylar with plastic lead. This was a fun experience in the sense that I ...
From Dell / Intel®
Increased Workstation Performance Is as Easy as 'DPPO'
 Trey Morton, Dell, 4/25/2013    2
I've been using workstations for more than 10 years and love finding ways to get more performance from my system. With demanding professional applications that require more power each ...
From Dell / Intel®
Taking Some of the Grit out of Manufacturing
 Kirsten Billhardt, Manufacturing Industry Marketing Strategist, Dell, 3/26/2013    5
A lasting memory from my first job as an engineer in an auto assembly plant is standing on hard concrete at six in the morning, vending-machine coffee clutched in hand, listening to ...
Quick Poll
The Continuing Education Center offers engineers an entirely new way to get the education they need to formulate next-generation solutions.
Jun 10 - 14, Exploring Application-Specific Programmable Logic Devices
SEMESTERS: 1  |  2  |  3


DN Radio
Sponsored by
NEXT UPCOMING BROADCAST
A quick look into the merger of two powerhouse 3D printing OEMs and the new leader in rapid prototyping solutions, Stratasys. The industrial revolution is now led by 3D printing and engineers are given the opportunity to fully maximize their design capabilities, reduce their time-to-market and functionally test prototypes cheaper, faster and easier. Bruce Bradshaw, Director of Marketing in North America, will explore the large product offering and variety of materials that will help CAD designers articulate their product design with actual, physical prototypes. This broadcast will dive deep into technical information including application specific stories from real world customers and their experiences with 3D printing. 3D Printing is
Twitter Feed
Design News Twitter Feed
Like Us on Facebook

Sponsored Content

Technology Marketplace

Datasheets.com Parts Search

185 million searchable parts
(please enter a part number or hit search to begin)
Copyright © 2013 UBM Canon, A UBM company, All rights reserved. Privacy Policy | Terms of Service