A system architecture, processor, and communication protocol for secure implants

Strydis, Christos; Seepers, Robert M.; Peris-López, Pedro; Siskos, Dimitrios; Sourdis, Ioannis

doi:10.1145/2541228.2555313

Cited by 24 publications

(2 citation statements)

References 41 publications

(41 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There is a separate MCU/processor for executing the medical application (medical MCU), and for handling communication packets and running the security protocol (security MCU). This dual-processor architecture, which is based on [28], is a first step in protecting against DoS attacks in general: If an attacker sends continuous packets to prevent the IMD from running its main application, only the security MCU will be kept busy entertaining those messages, whereas the medical MCU will remain unaffected. However, in order to protect against battery DoS specifically, additional measures are required, as explained below.…”

Section: System Architecturementioning

confidence: 99%

Securing Implantable Medical Devices Using Ultrasound Waves

et al. 2021

Self Cite

View full text Add to dashboard Cite

Modern Implantable Medical Devices (IMDs) are vulnerable to security attacks because of their wireless connectivity to the outside world. One of the main security challenges is establishing trust between the IMD and an external reader/programmer in order to facilitate secure communication. Numerous device-pairing schemes have been proposed to address this specific challenge. However, they alone cannot protect against a battery-depletion attack in which the adversary is able to keep the IMD occupied with continuous authentication requests until the battery empties. As a result, energy harvesting has been employed as an ancillary mechanism for implementing Zero-Power Defense (ZPD) functionality in order to protect against such a low-cost attack. In this paper, we propose SecureEcho, a device-pairing scheme based on MHz-range ultrasound that establishes trust between the IMD and an external reader. In addition, SecureEcho achieves ZPD without requiring any energy harvesting, which significantly reduces the design complexity. We also provide a proof-of-concept implementation and a first ever security evaluation of the ultrasound channel, which proves that it is infeasible for the attacker to eavesdrop or insert messages even from a range of a few millimeters.INDEX TERMS Authentication protocol, battery-depletion attack, body-coupled communication, denialof-service attack, IMD, implantable medical device, ultrasound, zero-power defense This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.

show abstract

Section: System Architecturementioning

confidence: 99%

Securing Implantable Medical Devices Using Ultrasound Waves

et al. 2021

Self Cite

View full text Add to dashboard Cite

show abstract

“…These components are optional, meaning they may not appear in all implanted devices. One good illustration is the Smart Implant Security Core (SISC) [35]. Communication between IMD and a programmer via wireless medium passes through this device.…”

mentioning

confidence: 99%

Can Formal Security Verification Really Be Optional? Scrutinizing the Security of IMD Authentication Protocols

Duguma

You

Gebremariam

et al. 2021

Sensors

View full text Add to dashboard Cite

The need for continuous monitoring of physiological information of critical organs of the human body, combined with the ever-growing field of electronics and sensor technologies and the vast opportunities brought by 5G connectivity, have made implantable medical devices (IMDs) the most necessitated devices in the health arena. IMDs are very sensitive since they are implanted in the human body, and the patients depend on them for the proper functioning of their vital organs. Simultaneously, they are intrinsically vulnerable to several attacks mainly due to their resource limitations and the wireless channel utilized for data transmission. Hence, failing to secure them would put the patient’s life in jeopardy and damage the reputations of the manufacturers. To date, various researchers have proposed different countermeasures to keep the confidentiality, integrity, and availability of IMD systems with privacy and safety specifications. Despite the appreciated efforts made by the research community, there are issues with these proposed solutions. Principally, there are at least three critical problems. (1) Inadequate essential capabilities (such as emergency authentication, key update mechanism, anonymity, and adaptability); (2) heavy computational and communication overheads; and (3) lack of rigorous formal security verification. Motivated by this, we have thoroughly analyzed the current IMD authentication protocols by utilizing two formal approaches: the Burrows–Abadi–Needham logic (BAN logic) and the Automated Validation of Internet Security Protocols and Applications (AVISPA). In addition, we compared these schemes against their security strengths, computational overheads, latency, and other vital features, such as emergency authentications, key update mechanisms, and adaptabilities.

show abstract

Security and privacy issues in implantable medical devices: A comprehensive survey

Cámara

Peris-López

Tapiador

2015

Journal of Biomedical Informatics

Self Cite

247

188

View full text Add to dashboard Cite

Bioengineering is a field in expansion. New technologies are appearing to provide a more efficient treatment of diseases or human deficiencies. Implantable Medical Devices (IMDs) constitute one example, these being devices with more computing, decision making and communication capabilities. Several research works in the computer security field have identified serious security and privacy risks in IMDs that could compromise the implant and even the health of the patient who carries it. This article surveys the main security goals for the next generation of IMDs and analyzes the most relevant protection mechanisms proposed so far. On the one hand, the security proposals must have into consideration the inherent constraints of these small and implanted devices: energy, storage and computing power. On the other hand, proposed solutions must achieve an adequate balance between the safety of the patient and the security level offered, with the battery lifetime being another critical parameter in the design phase.

show abstract

A system architecture, processor, and communication protocol for secure implants

Cited by 24 publications

References 41 publications

Securing Implantable Medical Devices Using Ultrasound Waves

Securing Implantable Medical Devices Using Ultrasound Waves

Can Formal Security Verification Really Be Optional? Scrutinizing the Security of IMD Authentication Protocols

Security and privacy issues in implantable medical devices: A comprehensive survey

Contact Info

Product

Resources

About