Skip to main content
SpringerLink
Log in

Cybersecurity Challenges in Healthcare Medical Devices

  • Conference paper
  • First Online:
Internet of Everything (IoECon 2022)

Included in the following conference series:

Abstract

Medical devices are rapidly evolving and becoming more interconnected with healthcare networks, overcoming resource constraints, and increasingly focused on patient well-being and needs.

This work intends to identify future research themes in the area of cybersecurity in health by surveying the articles being developed and identifying their current limitations and future work. The developed analysis was based on the publications with the highest number of citations, enabling us to find several challenges and restrictions such as integrating devices in systems.

Innovations and the emergence of new technologies with inherent security vulnerabilities, will continue to evolve, escalating the attackers interest in exploiting unknown cybersecurity risks within healthcare. It is mandatory to consider cybersecurity risks since the conception of the devices to reduce security flaws, ensure the patients with a better quality of life, and guarantee information security properties.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 54.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 69.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. MDR - Article 2 - Definitions - Medical Device Regulation (2022). https://www.medical-device-regulation.eu/2019/07/10/mdr-article-2-definitions. Accessed 22 Jan 2022

  2. Medical devices. https://www.who.int/health-topics/medical-devices#tab=tab_1. Accessed 05 Jan 2022

  3. Feng, L., et al.: Research and application progress of intelligent wearable devices. Chinese J. Anal. Chem. 49(2), 159–171 (2021). https://doi.org/10.1016/S1872-2040(20)60076-7

    Article  Google Scholar 

  4. Sneha, S., Panjwani, A., Lade, B., Randolph, J., Vickery, M.: Alleviating challenges related to FDA-approved medical wearables using blockchain technology. IT Prof. 23(4), 21–27 (2021). https://doi.org/10.1109/MITP.2021.3072535

    Article  Google Scholar 

  5. FDA.gov (2022). https://www.fda.gov/files/Content-of-Premarket-Submissions-for-Management-of-Cybersecurity-in-Medical-Devices---Guidance-for-Industry-and-Food-and-Drug-Administration-Staff.pdf. Accessed 05 Jan 2022

  6. VOSviewer - visualizing scientific landscapes. https://www.vosviewer.com/. Accessed 28 Feb 2022

  7. Camara, C., Peris-Lopez, P., Tapiador, J.E.: Security and privacy issues in implantable medical devices: a comprehensive survey. J. Biomed. Inform. 55, 272–289 (2015). https://doi.org/10.1016/j.jbi.2015.04.007

    Article  Google Scholar 

  8. Humayed, A., Lin, J., Li, F., Luo, B.: Cyber-physical systems security—a survey. IEEE Internet Things J. 4(6), 1802–1831 (2017). https://doi.org/10.1109/JIOT.2017.2703172

    Article  Google Scholar 

  9. Hossain, M., Islam, S.M.R., Ali, F., Kwak, K.S., Hasan, R.: An Internet of Things-based health prescription assistant and its security system design. Future Gener. Comput. Syst. 82, 422–439 (2018). https://doi.org/10.1016/J.FUTURE.2017.11.020

    Article  Google Scholar 

  10. Pereira, T., Barreto, L., Amaral, A.: Network and information security challenges within Industry 4.0 paradigm. Procedia Manuf. 13, 1253–1260 (2017). https://doi.org/10.1016/J.PROMFG.2017.09.047

    Article  Google Scholar 

  11. Fierce Healthcare: 82% of healthcare organizations have experienced an IoT-focused cyberattack, survey finds. https://www.fiercehealthcare.com/tech/82-healthcare-organizations-have-experienced-iot-focused-cyber-attack-survey-finds. Accessed 22 Feb 2022

  12. Rushanan, M., Rubin, A.D., Kune, D.F., Swanson, C.M.: SoK: security and privacy in implantable medical devices and body area networks. In: 35th IEEE Symposium on Security and Privacy (SP 2014), pp. 524–539 (2014). https://doi.org/10.1109/SP.2014.40

  13. Yaqoob, T., Abbas, H., Atiquzzaman, M.: Security vulnerabilities, attacks, countermeasures, and regulations of networked medical devices-a review. IEEE Commun. Surv. Tutor. 21(4), 3723–3768 (2019). https://doi.org/10.1109/COMST.2019.2914094

    Article  Google Scholar 

  14. NVD - CVE-2021-31886 (2021). https://nvd.nist.gov/vuln/detail/CVE-2021-31886. Accessed 14 Feb 2022

  15. Ahmed, M., Pathan, A.S.K.: False data injection attack (FDIA): an overview and new metrics for fair evaluation of its countermeasure. Complex Adapt. Syst. Model. 8(1), 1–14 (2020). https://doi.org/10.1186/S40294-020-00070-W/FIGURES/7

    Article  Google Scholar 

  16. ABC News: Ireland’s health service hit by “significant” ransomware attack. https://abcnews.go.com/International/irelands-health-service-hit-significant-ransomware-attack/story?id=77685241. Accessed 22 Jan 2022

  17. Cyberattack Drives 2 UF Health Hospitals to EHR Downtime. https://healthitsecurity.com/news/cyberattack-drives-2-uf-health-hospitals-to-ehr-downtime. Accessed 22 Jan 2022

  18. Saint Agnes Health Care Hack Exposes 25,000 HIPAA Records. https://www.hipaajournal.com/saint-agnes-healthcare-hack-exposes-25000-hipaa-records-5663/. Accessed 22 Jan 2022

  19. Pycroft, L., Aziz, T.Z.: Security of implantable medical devices with wireless connections: the dangers of cyber-attacks. Expert Rev. Med. Devices 15(6), 403–406 (2018). https://doi.org/10.1080/17434440.2018.1483235

    Article  Google Scholar 

  20. Gollakota, S., Hassanieh, H., Ransford, B., Katabi, D., Fu, K.: They can hear your heartbeats: non-invasive security for implantable medical devices. SIGCOMM Comput. Commun. Rev. 41(4), 2–13 (2011). https://doi.org/10.1145/2043164.2018438

    Article  Google Scholar 

  21. Hu, F., et al.: Robust cyber-physical systems: concept, models, and implementation. Future Gener. Comput. Syst. 56, 449–475 (2016). https://doi.org/10.1016/j.future.2015.06.006

    Article  Google Scholar 

  22. Swarna Priya, R.M., et al.: An effective feature engineering for DNN using hybrid PCA-GWO for intrusion detection in IoMT architecture. Comput. Commun. 160, 139–149 (2020). https://doi.org/10.1016/j.comcom.2020.05.048

    Article  Google Scholar 

  23. Williams, P.A., Woodward, A.J.: Cybersecurity vulnerabilities in medical devices: a complex environment and multifaceted problem. Med. Devices (Auckland, N.Z.) 8, 305–316 (2015). https://doi.org/10.2147/MDER.S50048

    Article  Google Scholar 

  24. Coventry, L., Branley, D.: Cybersecurity in healthcare: a narrative review of trends, threats and ways forward. Maturitas 113, 48–52 (2018). https://doi.org/10.1016/j.maturitas.2018.04.008

    Article  Google Scholar 

  25. Patients Unaware of the Extent of Healthcare Cyberattacks and Data Theft. https://www.hipaajournal.com/patients-unaware-of-the-extent-of-healthcare-cyberattacks-and-data-theft/. Accessed 25 Feb 2022

  26. Cybersecurity|FDA: https://www.fda.gov/medical-devices/digital-health-center-excellence/cybersecurity#safety. Accessed 25 Feb 2022

Download references

Author information

Authors and Affiliations

  1. Instituto Politécnico de Viana do Castelo, Viana do Castelo, Portugal

    Ana Longras

  2. Centro ALGORITMI, Universidade do Minho, Guimarães, Portugal

    Teresa Pereira

  3. INESC TEC–Institute for Systems and Computer Engineering, Technology and Science, 4200-465, Porto, Portugal

    António Amaral

Authors
  1. Ana Longras
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Teresa Pereira
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. António Amaral
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Ana Longras .

Editor information

Editors and Affiliations

  1. University of Minho, Guimarães, Portugal

    Teresa Pereira

  2. Hofstra University, Hempstead, NY, USA

    John Impagliazzo

  3. University of Minho, Guimarães, Portugal

    Henrique Santos

Rights and permissions

Reprints and permissions

Copyright information

© 2023 ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Longras, A., Pereira, T., Amaral, A. (2023). Cybersecurity Challenges in Healthcare Medical Devices. In: Pereira, T., Impagliazzo, J., Santos, H. (eds) Internet of Everything. IoECon 2022. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 458. Springer, Cham. https://doi.org/10.1007/978-3-031-25222-8_6

Download citation

  • DOI: https://doi.org/10.1007/978-3-031-25222-8_6

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-031-25221-1

  • Online ISBN: 978-3-031-25222-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation