fbpx
1-888-310-4540 (main) / 1-888-707-6150 (support) info@spkaa.com
Select Page

Cyber Security in Medical Device Design

Published by Mike Solinap
on June 2, 2014

With the push by big technology players (Cisco, Google, Intel, etc.) towards connectivity in everyday devices, cyber security is becoming more and more crucial. This push is even seen in medical device design as the industry begins to move toward cloud-integrated and network-connected devices so that they may be monitored or customized to surgeons needs on the fly.

The issue is that medical devices that used to be standalone machines are now being connected to wider networks. While this is useful, most manufacturers are not adding any increased security to their systems where a single machine attack used to be isolated and required physical access.

An infection and attack on an entire network of devices around the world can now occur completely remotely. A single change to an insecure cloud database or device that sets and gets settings from the cloud could lead to an entire device line being compromised. A few years ago, security expert Barnaby Jack showed that it is possible to compromise devices such as pacemakers and insulin pumps to attack patients as well. Any device with network connectivity will be insecure — and with strict FDA regulations on system updates, many manufacturers will not be patching issues as quickly as may be needed.

Thankfully, the FDA has been working on a draft guidance to try to set guidelines medical device engineers should use while designing their systems. The guidance also mentions possibly allowing validated operating system updates to be patched into systems in-between fully validated releases. Hopefully, the new guidance will help keep systems and patient data safe.

Next Steps:

Latest White Papers

The Ultimate Jira Data Protection

The Ultimate Jira Data Protection

Remote work is here to stay, and companies are turning to cloud-based solutions to support their teams. Atlassian's suite of products is a top choice for businesses worldwide. But, many businesses are still unsure about its built-in data protection capabilities....

Related Resources

Best CloudBees Jenkins Platform Alternatives

Best CloudBees Jenkins Platform Alternatives

Change is on the horizon for organizations relying on the CloudBees Jenkins Platform (CJP). With CJP now designated as a legacy product, a migration to CloudBees CI or an alternative CI solution is imperative. In this blog post, we will cover the ‘need-to-know’ info...

How To Reduce Cybersecurity Risks For Remote Workers

How To Reduce Cybersecurity Risks For Remote Workers

Remote working is an effective way to keep your business running 24/7, mitigate downtime and tap into new markets or expertise. Now, the world is flooded with companies utilizing remote work, digital nomads and gig workers to keep their competitive edge. But, the rise...