Resilient security of medical cyber-physical systems

Aakarsh Rao, Nadir Carreón, Roman L Lysecky, Jerzy W Rozenblit, Johannes Sametinger

Research output: Contribution to journalArticle

Abstract

Incorporating network connectivity in cyber-physical systems (CPSs) leads to advances yielding better healthcare and quality of life for patients. However, such advances come with the risk of increased exposure to security vulnerabilities, threats, and attacks. Numerous vulnerabilities and potential attacks on these systems have been demonstrated. We posit that cyber-physical system software has to be designed and developed with security as a key consideration by enforcing fail-safe modes, ensuring critical functionality and risk management. In this paper, we propose operating modes, risk models, and runtime threat estimation for automatic switching to fail-safe modes when a security threat or vulnerability has been detected.

Original languageEnglish (US)
Pages (from-to)95-100
Number of pages6
JournalCommunications in Computer and Information Science
Volume1062
DOIs
StatePublished - Jan 1 2019

Fingerprint

Vulnerability
Risk management
Attack
Network Connectivity
Quality of Life
Risk Management
Healthcare
Software System
Cyber Physical System
Model

Keywords

  • Cyber-physical system
  • Medical device
  • Security

ASJC Scopus subject areas

  • Computer Science(all)
  • Mathematics(all)

Cite this

Resilient security of medical cyber-physical systems. / Rao, Aakarsh; Carreón, Nadir; Lysecky, Roman L; Rozenblit, Jerzy W; Sametinger, Johannes.

In: Communications in Computer and Information Science, Vol. 1062, 01.01.2019, p. 95-100.

Research output: Contribution to journalArticle

@article{cf4e768be9bb41f5bceb365ee41936c3,
title = "Resilient security of medical cyber-physical systems",
abstract = "Incorporating network connectivity in cyber-physical systems (CPSs) leads to advances yielding better healthcare and quality of life for patients. However, such advances come with the risk of increased exposure to security vulnerabilities, threats, and attacks. Numerous vulnerabilities and potential attacks on these systems have been demonstrated. We posit that cyber-physical system software has to be designed and developed with security as a key consideration by enforcing fail-safe modes, ensuring critical functionality and risk management. In this paper, we propose operating modes, risk models, and runtime threat estimation for automatic switching to fail-safe modes when a security threat or vulnerability has been detected.",
keywords = "Cyber-physical system, Medical device, Security",
author = "Aakarsh Rao and Nadir Carre{\'o}n and Lysecky, {Roman L} and Rozenblit, {Jerzy W} and Johannes Sametinger",
year = "2019",
month = "1",
day = "1",
doi = "10.1007/978-3-030-27684-3_13",
language = "English (US)",
volume = "1062",
pages = "95--100",
journal = "Communications in Computer and Information Science",
issn = "1865-0929",
publisher = "Springer Verlag",

}

TY - JOUR

T1 - Resilient security of medical cyber-physical systems

AU - Rao, Aakarsh

AU - Carreón, Nadir

AU - Lysecky, Roman L

AU - Rozenblit, Jerzy W

AU - Sametinger, Johannes

PY - 2019/1/1

Y1 - 2019/1/1

N2 - Incorporating network connectivity in cyber-physical systems (CPSs) leads to advances yielding better healthcare and quality of life for patients. However, such advances come with the risk of increased exposure to security vulnerabilities, threats, and attacks. Numerous vulnerabilities and potential attacks on these systems have been demonstrated. We posit that cyber-physical system software has to be designed and developed with security as a key consideration by enforcing fail-safe modes, ensuring critical functionality and risk management. In this paper, we propose operating modes, risk models, and runtime threat estimation for automatic switching to fail-safe modes when a security threat or vulnerability has been detected.

AB - Incorporating network connectivity in cyber-physical systems (CPSs) leads to advances yielding better healthcare and quality of life for patients. However, such advances come with the risk of increased exposure to security vulnerabilities, threats, and attacks. Numerous vulnerabilities and potential attacks on these systems have been demonstrated. We posit that cyber-physical system software has to be designed and developed with security as a key consideration by enforcing fail-safe modes, ensuring critical functionality and risk management. In this paper, we propose operating modes, risk models, and runtime threat estimation for automatic switching to fail-safe modes when a security threat or vulnerability has been detected.

KW - Cyber-physical system

KW - Medical device

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=85071852482&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85071852482&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-27684-3_13

DO - 10.1007/978-3-030-27684-3_13

M3 - Article

AN - SCOPUS:85071852482

VL - 1062

SP - 95

EP - 100

JO - Communications in Computer and Information Science

JF - Communications in Computer and Information Science

SN - 1865-0929

ER -