Probabilistic Threat Detection for Risk Management in Cyber-physical Medical Systems

Aakarsh Rao; Nadir Carreon; Roman L Lysecky; Jerzy W Rozenblit

doi:10.1109/MS.2017.4541031

Probabilistic Threat Detection for Risk Management in Cyber-physical Medical Systems

Aakarsh Rao, Nadir Carreon, Roman L Lysecky, Jerzy W Rozenblit

Electrical and Computer Engineering

Research output: Contribution to journal › Article

9 Citations (Scopus)

Abstract

Medical devices are complex cyber-physical systems incorporating emergent hardware and software components. However, this complexity leads to a wide attack surface posing security risks and vulnerabilities. Mitigation and management of such risks during premarket design and postmarket deployment are required. Dynamically mitigating threat potential in the presence of unknown vulnerabilities requires an adaptive risk-based scheme to assess the system's state, a secure system architecture that can isolate hardware and software components, and design methods that can adaptively adjust the system's topology based on risk changes. The essential complementary aspects during deployment are detecting, characterizing, and quantifying security threats. This article presents a dynamic risk management and mitigation approach based on probabilistic threat estimation. A smart-connected-pacemaker case study illustrates the approach. This article is part of a special issue on Software Safety and Security Risk Mitigation in Cyber-physical Systems.

Original language	English (US)
Article number	8239935
Pages (from-to)	38-43
Number of pages	6
Journal	IEEE Software
Volume	35
Issue number	1
DOIs	https://doi.org/10.1109/MS.2017.4541031
State	Published - Jan 1 2017

Fingerprint

Risk management

Pacemakers

Computer hardware

Topology

Hardware

Cyber Physical System

Keywords

medical-device security
risk assessment and management
software development
software engineering
threat estimation

ASJC Scopus subject areas

Software

Cite this

Rao, A., Carreon, N., Lysecky, R. L., & Rozenblit, J. W. (2017). Probabilistic Threat Detection for Risk Management in Cyber-physical Medical Systems. IEEE Software, 35(1), 38-43. [8239935]. https://doi.org/10.1109/MS.2017.4541031

Probabilistic Threat Detection for Risk Management in Cyber-physical Medical Systems. / Rao, Aakarsh; Carreon, Nadir; Lysecky, Roman L ; Rozenblit, Jerzy W.

In: IEEE Software, Vol. 35, No. 1, 8239935, 01.01.2017, p. 38-43.

Research output: Contribution to journal › Article

Rao, A, Carreon, N, Lysecky, RL & Rozenblit, JW 2017, 'Probabilistic Threat Detection for Risk Management in Cyber-physical Medical Systems', IEEE Software, vol. 35, no. 1, 8239935, pp. 38-43. https://doi.org/10.1109/MS.2017.4541031

Rao A, Carreon N, Lysecky RL , Rozenblit JW. Probabilistic Threat Detection for Risk Management in Cyber-physical Medical Systems. IEEE Software. 2017 Jan 1;35(1):38-43. 8239935. https://doi.org/10.1109/MS.2017.4541031

Rao, Aakarsh ; Carreon, Nadir ; Lysecky, Roman L ; Rozenblit, Jerzy W. / Probabilistic Threat Detection for Risk Management in Cyber-physical Medical Systems. In: IEEE Software. 2017 ; Vol. 35, No. 1. pp. 38-43.

@article{da5d0243c59341288a9b7b5277b97024,

title = "Probabilistic Threat Detection for Risk Management in Cyber-physical Medical Systems",

abstract = "Medical devices are complex cyber-physical systems incorporating emergent hardware and software components. However, this complexity leads to a wide attack surface posing security risks and vulnerabilities. Mitigation and management of such risks during premarket design and postmarket deployment are required. Dynamically mitigating threat potential in the presence of unknown vulnerabilities requires an adaptive risk-based scheme to assess the system's state, a secure system architecture that can isolate hardware and software components, and design methods that can adaptively adjust the system's topology based on risk changes. The essential complementary aspects during deployment are detecting, characterizing, and quantifying security threats. This article presents a dynamic risk management and mitigation approach based on probabilistic threat estimation. A smart-connected-pacemaker case study illustrates the approach. This article is part of a special issue on Software Safety and Security Risk Mitigation in Cyber-physical Systems.",

keywords = "medical-device security, risk assessment and management, software development, software engineering, threat estimation",

author = "Aakarsh Rao and Nadir Carreon and Lysecky, {Roman L} and Rozenblit, {Jerzy W}",

year = "2017",

month = "1",

day = "1",

doi = "10.1109/MS.2017.4541031",

language = "English (US)",

volume = "35",

pages = "38--43",

journal = "IEEE Software",

issn = "0740-7459",

publisher = "IEEE Computer Society",

number = "1",

}

TY - JOUR

T1 - Probabilistic Threat Detection for Risk Management in Cyber-physical Medical Systems

AU - Rao, Aakarsh

AU - Carreon, Nadir

AU - Lysecky, Roman L

AU - Rozenblit, Jerzy W

PY - 2017/1/1

Y1 - 2017/1/1

N2 - Medical devices are complex cyber-physical systems incorporating emergent hardware and software components. However, this complexity leads to a wide attack surface posing security risks and vulnerabilities. Mitigation and management of such risks during premarket design and postmarket deployment are required. Dynamically mitigating threat potential in the presence of unknown vulnerabilities requires an adaptive risk-based scheme to assess the system's state, a secure system architecture that can isolate hardware and software components, and design methods that can adaptively adjust the system's topology based on risk changes. The essential complementary aspects during deployment are detecting, characterizing, and quantifying security threats. This article presents a dynamic risk management and mitigation approach based on probabilistic threat estimation. A smart-connected-pacemaker case study illustrates the approach. This article is part of a special issue on Software Safety and Security Risk Mitigation in Cyber-physical Systems.

AB - Medical devices are complex cyber-physical systems incorporating emergent hardware and software components. However, this complexity leads to a wide attack surface posing security risks and vulnerabilities. Mitigation and management of such risks during premarket design and postmarket deployment are required. Dynamically mitigating threat potential in the presence of unknown vulnerabilities requires an adaptive risk-based scheme to assess the system's state, a secure system architecture that can isolate hardware and software components, and design methods that can adaptively adjust the system's topology based on risk changes. The essential complementary aspects during deployment are detecting, characterizing, and quantifying security threats. This article presents a dynamic risk management and mitigation approach based on probabilistic threat estimation. A smart-connected-pacemaker case study illustrates the approach. This article is part of a special issue on Software Safety and Security Risk Mitigation in Cyber-physical Systems.

KW - medical-device security

KW - risk assessment and management

KW - software development

KW - software engineering

KW - threat estimation

UR - http://www.scopus.com/inward/record.url?scp=85040312293&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85040312293&partnerID=8YFLogxK

U2 - 10.1109/MS.2017.4541031

DO - 10.1109/MS.2017.4541031

M3 - Article

AN - SCOPUS:85040312293

VL - 35

SP - 38

EP - 43

JO - IEEE Software

JF - IEEE Software

SN - 0740-7459

IS - 1

M1 - 8239935

ER -

Access to Document

10.1109/MS.2017.4541031