Balancing security and utility in medical devices?

Proceedings - Design Automation Conference

Volumn , Issue , 2013, Pages

  Rostami, Masoud ^a   Burleson, Wayne ^b   Juels, Ari ^c   Koushanfar, Farinaz ^a  

^a RICE UNIVERSITY   (United States)

^b UNIVERSITY OF MASSACHUSETTS   (United States)

^c RSA Laboratories   (United States)

Author keywords

IMD security; Implantable medical devices

Indexed keywords

ACCESS-CONTROL MECHANISMS; BODYAREA NETWORKS (BAN); COMPUTATIONAL CAPABILITY; IMD SECURITY; IMPLANTABLE MEDICAL DEVICES; MEDICAL INTERVENTION; MONITORING AND CONTROL; WIRELESS CONNECTIVITIES;

COMPUTER AIDED DESIGN;

BIOMEDICAL EQUIPMENT;

EID: 84879868277     PISSN: 0738100X     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2463209.2488750     Document Type: Conference Paper

References (39)

1. W. Burleson, S. S. Clark, B. Ransford, and K. Fu, "Design challenges for secure implantable medical devices, " in Proceedings of Design Automation Conference, pp. 12-17, 2012.
2. W. Maisel, "Safety issues involving medical devices, " Journal of the American Medical Association, vol. 294, pp. 955-958, Aug. 2005.
3. D. Halperin, T. Heydt-Benjamin, B. Ransford, S. Clark, B. Defend, W. Morgan, K. Fu, T. Kohno, and W. Maisel, "Pacemakers and implantable cardiac defibrillators: Software radio attacks and zero-power defenses, " in IEEE Symp. on Security and Privacy (S& P), pp. 129-142, 2008.
4. C. Li, A. Raghunathan, and N. K. Jha, "Hijacking an insulin pump: Security attacks and defenses for a diabetes therapy system, " in IEEE Int. Conf. on e-Health Networking Applications and Services, pp. 150-156, 2011.
5. D. Halperin, T. Kohno, T. Heydt-Benjamin, K. Fu, and W. Maisel, "Security and privacy for implantable medical devices, " IEEE Pervasive Computing, vol. 7, pp. 30-39, Jan.-Mar. 2008.
6. F. Stajano and R. Anderson, "The resurrecting duckling: Security issues for ad-hoc wireless networks, " in Int. Workshop of Security Protocols, pp. 172-194, 1999.
7. S. Warren, J. Lebak, J. Yao, J. Creekmore, A. Milenkovic, and E. Jovanov, "Interoperability and security in wireless body area network infrastructures, " in IEEE Engineering in Medicine and Biology Society, pp. 3837-3840, 2005.
8. M. Meingast, T. Roosta, and S. Sastry, "Security and privacy issues with health care information technology, " in IEEE Engineering in Medicine and Biology Society, pp. 5453-5458, 2006.
9. F. Hu, Q. Hao, M. Lukowiak, Q. Sun, K. Wilhelm, S. Radziszowski, and Y. Wu, "Trustworthy data collection from implantable medical devices via high-speed security implementation based on IEEE 1363, " IEEE Trans. on Info. Tech. in Biomedicine, vol. 14, pp. 1397-1404, Nov. 2010.
10. K. Zetter, "DigiNotar files for bankruptcy in wake of devastating hack, " Wired, 20 Sept. 2011.
11. F. Xu, Z. Qin, C. Tan, B. Wang, and Q. Li, "IMDGuard: Securing implantable medical devices with the external wearable guardian, " in Proc. of IEEE INFOCOM, pp. 1862-1870, 2011.
12. C. Hu, X. Cheng, F. Zhangand, D. Wuand, X. Liao, and D. Chen, "OPFKA: Secure and efficient ordered-physiological-feature-based key agreement for wireless body area networks, " in Proc. of IEEE INFOCOM, To Appear, 2013.
13. T. G. Zimmerman, "Personal area networks: near-field intrabody communication, " IBM systems Journal, vol. 35, pp. 609-617, 1996.
14. T. G. Zimmerman, J. R. Smith, J. A. Paradiso, D. Allport, and N. Gershenfeld, "Applying electric field sensing to human-computer interfaces, " in Proceedings of the SIGCHI conference on Human factors in computing systems, pp. 280-287, 1995.
15. S.-Y. Chang, Y.-C. Hu, H. Anderson, T. Fu, and E. Y. Huang, "Body area network security: robust key establishment using human body channel, " in Proceedings of the USENIX conference on Health Security and Privacy, pp. 5-5, 2012.
16. S. Cherukuri, K. Venkatasubramanian, and S. Gupta, "Biosec: a biometric based approach for securing communication in wireless networks of biosensors implanted in the human body, " in Parallel Processing Workshop, pp. 432-439, 2003.
17. A. L. Goldberger, D. R. Rigney, and B. J. West, "Chaos and fractals in human physiology, " Scientific American, vol. 262, pp. 42-49, 1990.
18. M. Signorini, F. Marchetti, and S. Cerutti, "Applying nonlinear noise reduction in the analysis of heart rate variability, " Engineering in Medicine and Biology Magazine, IEEE, vol. 20, no. 2, pp. 59-68, 2001.
19. R. Yulmetyev, P. Hänggi, and F. Gafarov, "Quantification of heart rate variability by discrete nonstationary non-Markov stochastic processes, " Physical Review E, vol. 65, no. 4, p. 046107, 2002.
20. K. K. Venkatasubramanian, A. Banerjee, and S. K. S. Gupta, "PSKA: usable and secure key agreement scheme for body area networks, " IEEE Trans. on Information Technology in Biomedicine, vol. 14, no. 1, pp. 60-68, 2010.
21. K. K. Venkatasubramanian, A. Banerjee, and S. Gupta, "Plethysmogram- based secure inter-sensor communication in body area networks, " in IEEE Military Communications Conference, pp. 1-7, 2008.
22. C. Poon, Y. Zhang, and S. Bao, "A novel biometrics method to secure wireless body area sensor networks for telemedicine and m-health, " IEEE Communications Magazine, vol. 44, no. 4, pp. 73-81, 2006.
23. S. Bao, C. Poon, Y. Zhang, and L. Shen, "Using the timing information of heartbeats as an entity identifier to secure body sensor network, " IEEE Trans. on Info. Tech. in Biomedicine, vol. 12, no. 6, pp. 772-779, 2008.
24. K. Venkatasubramanian and S. Gupta, "Physiological value-based efficient usable security solutions for body sensor networks, " ACM Trans. Sensor Networks, vol. 6, pp. 31:1-31:36, July 2010.
25. K. Cho and D. Lee, "Biometric based secure communications without pre-deployed key for biosensor implanted in body sensor networks, " in Information Security Applications, pp. 203-218, 2012.
26. Y. Dodis, L. Reyzin, and A. Smith, "Fuzzy extractors: How to generate strong keys from biometrics and other noisy data, " SIAM Journal on Computing, vol. 38, no. 1, pp. 97-139, 2008.
27. A. Juels and M. Sudan, "A fuzzy vault scheme, " Designs, Codes and Cryptography, vol. 38, no. 2, pp. 237-257, 2006.
28. X. Liao, "Body area network security: A fuzzy attribute-based signcryption scheme, " IEEE Journal on Selected Areas in Communications, To Appear, 2013.
29. T. Denning, K. Fu, and T. Kohno, "Absence makes the heart grow fonder: New directions for implantable medical device security, " in USENIX HotSec, 2008.
30. S. Gollakota, H. Hassanieh, B. Ransford, D. Katabi, and K. Fu, "They can hear your heartbeats: non-invasive security for implantable medical devices, " in ACM SIGCOMM, pp. 2-13, 2011.
31. W. Shen, P. Ning, X. He, and H. Dai, "Ally friendly jamming: How to jam your enemy and maintain your own wireless connectivity at the same time, " in IEEE Symp. on Security and Privacy, 2013.
32. K. Rasmussen, C. Castelluccia, T. Heydt-Benjamin, and S. Capkun, "Proximity-based access control for implantable medical devices, " in Proc. of Computer and communications security, pp. 410-419, 2009.
33. C. Cremers, K. Rasmussen, B. Schmidt, and S. Capkun, "Distance hijacking attacks on distance bounding protocols, " in IEEE Symp. on Security and Privacy, pp. 113-127, 2012.
34. M. Poturalski, M. Flury, P. Papadimitratos, J.-P. Hubaux, and J.-Y. L. Boudec, "Distance bounding with ieee 802.15.4a: Attacks and countermeasures, " IEEE Trans. on Wireless Comms., vol. 10, no. 4, pp. 1334- 1344, 2011.
35. distributed.net, "Project RC5." http://www.distributed.net/RC5, Referenced 2012.
36. B. Kanukurthi and L. Reyzin, "Key agreement from close secrets over unsecured channels, " in Eurocrypt, pp. 206-223, 2009.
37. G. Burr, B. Kurdi, J. Scott, C. Lam, K. Gopalakrishnan, and R. Shenoy, "Overview of candidate device technologies for storage-class memory, " IBM Journal of Research and Development, vol. 52, no. 4.5, pp. 449-464, 2008.
38. F. Koushanfar and A. Mirhoseini, "Hybrid heterogeneous energy supply networks, " in IEEE Int. Symp. on Circuits and Systems, 2011.
39. J. Paradiso and T. Starner, "Energy scavenging for mobile and wireless electronics, " IEEE Pervasive Computing, vol. 4, no. 1, pp. 18-27, 2005.