Software for Analyzing Security for Healthcare Organizations

Magomedov, Shamil

doi:10.1007/978-981-16-1480-4_16

Cited by 1 publication

(2 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Dupont et al wrote a protocol dissector for the IDS Forescout Silent-Defense [141]. Magomedov recommends a signature-based approach for identified DICOM vulnerabilities [6]. Nguyen et al designed a secure logger for medical devices with some detection capabilities.…”

Section: A Rq 1 -Utilized Detection Approach and Employed Technologymentioning

confidence: 99%

See 1 more Smart Citation

Attack Detection for Medical Cyber-Physical Systems–A Systematic Literature Review

et al. 2023

View full text Add to dashboard Cite

The threat situation due to cyber attacks in hospitals is emerging and patient life is at risk. One significant source of potential vulnerabilities is medical cyber-physical systems (MCPS). Detecting intrusions in this environment faces challenges different from other domains, mainly due to the heterogeneity of devices, the diversity of connectivity types, and the variety of terminology. To summarize existing results, we conducted a structured literature review (SLR) following the guidelines of Kitchenham et al. for SLRs in software engineering. We developed six research questions regarding detection approach, detection location, included features, adversarial focus, utilized datasets, and intrusion prevention. We identified that most researchers focused on an anomaly-based detection approach at the network layer. The primary focus was on the detection of malicious insiders. While several researchers used publicly available datasets for training and testing their algorithms, the lack of suitable datasets resulted in the development of testbeds consisting of various medical devices. Based on the results, we formulated five future research topics. First, the special conditions of hospital networks, the MCPS deployed within them, and the contrasts to other IT and OT environments should be examined. Thereupon, MCPS-specific datasets should be created that allow researchers to address the health domain's unique requirements and possibilities. At the same time, endeavors aimed at standardization in this area should be supported and expanded. Moreover, the use of medical context for attack detection should be further explored. Last but not least, efforts for MCPS-tailored intrusion prevention should be intensified. This way, the emerging threat landscape can be addressed, IT security in hospitals can be improved, and patient health can be protected.

show abstract

Section: A Rq 1 -Utilized Detection Approach and Employed Technologymentioning

confidence: 99%

“…As Coventry et al emphasized, securing legacy medical devices seems more crucial than ever. Despite these findings, current security scanners often fail to detect vulnerabilities in the healthcare environment because they do not have modules for medical devices and systems [6].…”

Section: Introductionmentioning

confidence: 99%