1
Q
What are 4 security challenges in relation to medical devices
A
Devices are critical: Devices can be life supporting, affect critical patient care or manage highly sensitive data.
Standardised configuration: Devices are typically produces in thousands or millions of units, all with the same software and hardware configuration. If an exploit is found on one device, it can be replicated across them all.
Long-living devices: Medical devices are designed to be used for 10-20 year. It is very difficult to protect against security threats decades into the future.
Non-secure design: Devices are often engineering under the assumption that they will not be exposed to security threats
2
Q
Name 4 FDA security recommendations
A
- Restrict unauthorised access to medical devices
- Make sure fire-walls are up to date
- Disable unnecessary ports and services
- Monitor network activity
3
Q
Name 4 security features
A
- Secure boot
- Authentication
- Device tampering protection
- Encryption
