A Threat Analysis of Networked Medical Devices

Here's an interesting analysis of security threats within a Windows-based hospital network for embedded medical devices: A threat analysis of critical patient monitoring medical devices.

The threat models are fairly complex and clearly a product of wider enterprise network IT security needs. I've discussed some of the other issues of putting medical devices on an institutional network in Networked Medical Devices. Security threats were not covered and this is an important topic for every hospital network.

There are a couple of items in this article worth commenting on.

The top five unmitigated threats were found to be:

The corrective action for the top threat (T002) was (my highlight):

After it was decided to remove all ePHI from the medical device data storage, the risk assessment changed and the threat of the medical device infecting the hospital enterprise network (T017) then became our primary concern.

This may be the "most effective countermeasure possible for HIPAA compliance and protecting patient privacy", but it is a not practical solution in the real world. Many medical devices store patient demographics. Because the benefits of patient identification outweigh the security risks, this practice is not likely to change in the future.

On these questions:

  1. Can the medical devices be infected from the enterprise network?
  2. Can the medical devices be infected via removable media?
  3. Can infected medical devices propagate malicious software back into the enterprise network?

I generally agree with the conclusions for the device under analysis. The challenge for a hospital is how do you ensure that every networked medical device follows these best practices (communications integrity, hardened OS, clean distribution media, etc.)?

Related posts:

  1. Networked Medical Devices
  2. Connecting Computers to FDA Regulated Medical Devices
  3. The EMR-Medical Devices Mess

Tags: ,

This entry was posted on Saturday, August 14th, 2010 at 2:12 pm and is filed under HIPAA, Medical Devices, Microsoft. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2 Responses to “A Threat Analysis of Networked Medical Devices”

  1. Tweets that mention A Threat Analysis of Networked Medical Devices | Bob on Medical Device Software -- Topsy.com says:
    August 15, 2010 at 5:12 am

    […] This post was mentioned on Twitter by Robert Nadler, Wendy Kovitz. Wendy Kovitz said: RT @bobnadler A Threat Analysis of Networked Medical Devices http://bt.io/Fosl […]

  2. Mark Metzler says:
    September 6, 2010 at 2:02 pm

    Here is a useful new website you might want to consider:

    Biomedical Device Integration Tech Corner
    http://bmdi-tech-corner.com

    “An archive of technical documents, protocols, standards and procedures useful for clinical engineers and IT professionals involved in biomedical device integration and connectivity to electronic medical records (EMR)”

Leave a Reply