SoK: Security and Privacy in Implantable Medical Devices and Body Area Networks
Michael Rushanan, Aviel D. Rubin, Colleen Swanson, Denis Foo Kune

Citation
Michael Rushanan, Aviel D. Rubin, Colleen Swanson, Denis Foo Kune. "SoK: Security and Privacy in Implantable Medical Devices and Body Area Networks". IEEE Security and Privacy, 2014.

Abstract
Balancing security, privacy, safety, and utility is a necessity in the health care domain, in which implantable medical devices (IMDs) and body area networks (BANs) have made it possible to continuously and automatically manage and treat a number of health conditions, ranging from cardiac arrhythmia to Parkinson's disease. In this work, we provide a clear definition and overview of the problem space, categorizing relevant research results in academia with respect to threats and identifying trends, interdependencies, and directions for future research. We identify three broad research categories aimed at ensuring the security and privacy of the telemetry, software, and physiological sensing interface layers. We find that while the security of the telemetry interface has received much attention in academia, both the threat of software exploitation and the sensor interface layer deserve further attention. In addition, we identify areas of concern in current research, including common sources of confusion in utilizing the appropriate dataset in the MIT PhysioNet portal for key establishment protocols and the use of human tissue simulators; we make concrete recommendations on appropriate methods for future work.

Electronic downloads

Citation formats  
  • HTML
    Michael Rushanan, Aviel D. Rubin, Colleen Swanson, Denis Foo
    Kune. <a
    href="http://www.terraswarm.org/pubs/215.html"
    >SoK: Security and Privacy in Implantable Medical Devices
    and Body Area Networks</a>, <i>IEEE Security and
    Privacy</i>,  2014.
  • Plain text
    Michael Rushanan, Aviel D. Rubin, Colleen Swanson, Denis Foo
    Kune. "SoK: Security and Privacy in Implantable Medical
    Devices and Body Area Networks". <i>IEEE Security
    and Privacy</i>,  2014.
  • BibTeX
    @article{RushananRubinSwansonFooKune14_SoKSecurityPrivacyInImplantableMedicalDevicesBodyArea,
        author = {Michael Rushanan and Aviel D. Rubin and Colleen
                  Swanson and Denis Foo Kune},
        title = {SoK: Security and Privacy in Implantable Medical
                  Devices and Body Area Networks},
        journal = {IEEE Security and Privacy},
        year = {2014},
        abstract = {Balancing security, privacy, safety, and utility
                  is a necessity in the health care domain, in which
                  implantable medical devices (IMDs) and body area
                  networks (BANs) have made it possible to
                  continuously and automatically manage and treat a
                  number of health conditions, ranging from cardiac
                  arrhythmia to Parkinson's disease. In this work,
                  we provide a clear definition and overview of the
                  problem space, categorizing relevant research
                  results in academia with respect to threats and
                  identifying trends, interdependencies, and
                  directions for future research. We identify three
                  broad research categories aimed at ensuring the
                  security and privacy of the telemetry, software,
                  and physiological sensing interface layers. We
                  find that while the security of the telemetry
                  interface has received much attention in academia,
                  both the threat of software exploitation and the
                  sensor interface layer deserve further attention.
                  In addition, we identify areas of concern in
                  current research, including common sources of
                  confusion in utilizing the appropriate dataset in
                  the MIT PhysioNet portal for key establishment
                  protocols and the use of human tissue simulators;
                  we make concrete recommendations on appropriate
                  methods for future work.},
        URL = {http://terraswarm.org/pubs/215.html}
    }
    

Posted by Barb Hoversten on 17 Nov 2013.

Notice: This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright.