Abstract
Cardiac implantable electronic devices (CIEDs) have shown to improve autonomy, quality of life, morbidity and mortality (relative reduction of mortality by 30% at 3 years follow-up) [1]. However, CIEDs possess a cyber vulnerability. With these exemplary safety concerns, we theorise: 1) Cybersecurity risks are difficult for medical institutions to plan (ambiguous nature of threat), which results in ineffective cyber defense measures, 2) Cyber threats can impair trust in the device, treatment plan and patient-provider relationship; and 3) As CIEDs “go” with the patient and the cyber risk can not be quantified, patients’ stress levels are higher from the perceived cyber threats than from a technical malfunction.
From a literature review and subsequent position paper submission, the rationale for the research project was formulated. The methodology consists of two qualitative studies assessing both providers’ and patients’ perspectives of cybersecurity risks with CIEDs and a risk assessment of CIED manufacturer manuals. For designing the two qualitative studies, we postulated: 1) providers lack understanding about cybersecurity risks with CIEDs and thus do not include these risks in the informed consent due to either “not wanting to raise patients’ anxiety levels except for known serious adverse events”, or not wanting to “extend time with consenting patients for low-probability issues” [13] and 2) patients are not aware of the cyber risks with CIEDs. From the results of these studies, we plan to develop white papers to promote standards and guidelines for cybersecurity related risks with CIEDs to the inform consent-processes as well as manufacturers’ manuals.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Hussein, A.A., Wilkoff, B.L.: Cardiac implantable electronic device therapy in heart failure. Circ. Res. 124, 1584–1597 (2019)
Kwarteng, E., Cebe, M.: A survey on security issues in modern implantable devices: solutions and future issues. Smart Health 25, 100295 (2022)
Zeitler, E.P., Piccini, J.P.: Remote monitoring of cardiac implantable electronic devices (CIED). Trends Cardiovasc. Med. 26(6), 568–577 (2016)
Epstein, A.E., DiMarco, J.P., Ellenbogen, K.A., Mark Estes, N.A., Freedman, R.A., Gettes, L.S., et al.: ACC/AHA/HRS 2008 guidelines for device-based therapy of cardiac rhythm abnormalities: a report of the American college of cardiology/American heart association task force on practice guidelines and developed in collaboration with the American association for thoracic surgery and society of thoracic surgeons. J. Am. Coll. Cardiol. 51(21), e1–e62 (2008)
Leavitt, N.: Researchers fight to keep implanted medical devices safe from hackers. Computer 43(8), 11–14 (2010)
CardioMessenger Smart Technical Manual. Biotronik. CardioMessenger Smart (biotronik.com), Berlin, Germany (2023)
Physician’s Technical Manual, Pacemakers and Operator’s Manual Latitude Programming System, Boston Scientific. 359248-002_multi_PTM_en-US_S.pdf (bostonscientific.com), 359487-008_LATITUDE Prog System 3300_OM_en_S.pdf (bostonscientific.com), St. Paul, Minnesota (2023)
Sütterlin, S., Knox, B.J., Maennel, K., Canham, M., Lugo, R.G.: Contribution title: On the relationship between health sectors' digitalization and sustainable health goals: a cybersecurity perspective. In: Flahault, A. (ed.) Transitioning to Good Health and Well-Being, 1st edn, pp. 133–155. MDPI Books, Basel (2022)
Kim, L.: Cybersecurity awareness: protecting data and patients. Nurs. Manage. 48(4), 16–19 (2017)
Das, S., Siroky, G.P., Lee, S., Mehta, D., Suri, R.: Cybersecurity: the need for data and patient safety with cardiac implantable electronic devices. Heart Rhythm 18(3), 473–481 (2021)
SoSci Survey GmbH. Questionnaire title: Providers’ perspectives of how prepared they are and how much they communicate to their cardiac implantable electronic device (CIED) patients about cybersecurity risks during the informed consent process. Login SoSci Survery (uni-wuerzburg.de), Munich, Germany (2023)
Lind, K.D.: Understanding the Market for Implantable Medical Devices. Issue Brief Public Policy Institute (American Association of Retired Persons) (2017)
Braddock, C.H., Fihn, S.D., Levinson, W., Jonsen, A.R., Pearlman, R.A.: How doctors and patients discuss routine clinical decisions. J. Gen. Int. Med. 12(6), 339–345 (1997)
Hassija, V., Chamola, V., Bajpai, B.C., Naren, Zeadally, S.: Security issues in implantable medical devices: fact or fiction? Sustain. Cities Soc. 66, 102552 (2021).
Varkey, B.: Principles of clinical ethics and their application to practice. Med. Princ. Pract. 30, 17–28 (2020)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Torgersen, L.N.S., Whitaker, R.E.D., Lugo, R.G., Sütterlin, S., Schulz, S.M. (2023). Heightened Cyber Vulnerability to Patients with Cardiac Implantable Electronic Devices. In: Stephanidis, C., Antona, M., Ntoa, S., Salvendy, G. (eds) HCI International 2023 Posters. HCII 2023. Communications in Computer and Information Science, vol 1832. Springer, Cham. https://doi.org/10.1007/978-3-031-35989-7_66
Download citation
DOI: https://doi.org/10.1007/978-3-031-35989-7_66
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-35988-0
Online ISBN: 978-3-031-35989-7
eBook Packages: Computer ScienceComputer Science (R0)