@inproceedings{34dbd6a376314fb1973e3e606ae1247f,
title = "Assessing medical device vulnerabilities on the Internet of Things",
abstract = "Internet enabled medical devices offer patients with a level of convenience. In recent years, the healthcare industry has seen a surge in the number of cyber-Attacks. Given the potentially fatal impact of a compromised medical device, this study aims to identify vulnerabilities of medical devices. Our approach uses Shodan to obtain a large collection of IP addresses that will be passed through Nessus to verify if any vulnerabilities exist. We determined some devices manufactured by primary vendors such as Omron Corporation, FORA, Roche, and Bionet contain serious vulnerabilities such as Dropbear SSH Server and MS17-010. These allow remote execution of code and authentication bypassing potentially giving attackers control of their systems.",
keywords = "IoT, Nessus, Shodan, health, medical devices, vulnerability assessment",
author = "Emma McMahon and Ryan Williams and Malaka El and Sagar Samtani and Mark Patton and Hsinchun Chen",
note = "Funding Information: ACKNOWLEDGMENTS This material is based upon work supported by the National Science Foundation under Grant No. NSF DUE-1303362 (SFS). Publisher Copyright: {\textcopyright} 2017 IEEE. Copyright: Copyright 2017 Elsevier B.V., All rights reserved.; 15th IEEE International Conference on Intelligence and Security Informatics, ISI 2017 ; Conference date: 22-07-2017 Through 24-07-2017",
year = "2017",
month = aug,
day = "8",
doi = "10.1109/ISI.2017.8004903",
language = "English (US)",
series = "2017 IEEE International Conference on Intelligence and Security Informatics: Security and Big Data, ISI 2017",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "176--178",
editor = "Lina Zhou and Wang, {G. Alan} and Chunxiao Xing and Bo Luo and Xiaolong Zheng and Hui Zhang",
booktitle = "2017 IEEE International Conference on Intelligence and Security Informatics",
}