topic Re: Which comes first humans or IoT within Hospitals? in Tech Talk

Which comes first humans or IoT within Hospitals?

Caute_cautim — Mon, 09 Oct 2023 10:08:56 GMT

Hi All

Think of all the IoT devices in a hospital, with Nurses and Doctor's stretched to the nth degree, coping with the Pandemic - is the security issues related to supporting systems the last thing on their minds?

One perspective is IoT devices don't have health problems, but unfortunately they do, especially if they are not configured securely, maintained and patched in a timely basis.

Often we hear the term "Safety first" as related to human lives, but what happens if the very supporting devices are not providing the accurate and correct information and have been in fact compromised or corrupted?

Are there automatic self checks within Medical devices to detect whether or not they have been tampered with before they are used or is this put aside in an medical emergency situation?

https://www.scmagazine.com/feature/device-security/can-healthcare-tackle-iot-medical-device-security-challenges

Regards

Caute_Cautim

Regards

Caute_Cautim

Re: Which comes first humans or IoT within Hospitals?

Caute_cautim — Sun, 10 Apr 2022 06:09:16 GMT

HI @Clay498 So how do you think this issue can be overcome?

Obtaining certification, may help influencing the board in terms of people taking notice of what you are saying?

But are there other ways to overcome this situation, handing over the issue to AI or ML will certainly not make much difference, due to the fact the developers have their own ethics, and intrinsic bias built in?

So who makes the decisions? Do we have to wait for sufficient people to perish, before it becomes an issue and even more legislation is put in place?

Treat this as a challenge if you wish.

Regards

Caute_Cautim

Re: Which comes first humans or IoT within Hospitals?

Lane69 — Wed, 20 Apr 2022 04:03:31 GMT

@Caute_cautim wrote: IndigoCard Login
Hi All

Think of all the IoT devices in a hospital, with Nurses and Doctor's stretched to the nth degree, coping with the Pandemic - is the security issues related to supporting systems the last thing on their minds?

One perspective is IoT devices don't have health problems, but unfortunately they do, especially if they are not configured securely, maintained and patched in a timely basis.

Often we hear the term "Safety first" as related to human lives, but what happens if the very supporting devices are not providing the accurate and correct information and have been in fact compromised or corrupted?

Are there automatic self checks within Medical devices to detect whether or not they have been tampered with before they are used or is this put aside in an medical emergency situation?

https://www.scmagazine.com/feature/device-security/can-healthcare-tackle-iot-medical-device-security-challenges

Regards

Caute_Cautim

Regards

Caute_Cautim

IoT is evolving healthcare. It can improve the quality of service and dramatically reduce healthcare costs and improve patient outcomes.

Re: Which comes first humans or IoT within Hospitals?

Caute_cautim — Tue, 19 Apr 2022 20:14:33 GMT

@Lane69 Ah ha you mean IoMT - yes I would agree, if only standards are complied or guidance. However, it still seems to be sti

ISO 13485, which is the standard for medical device quality management systems. ...
ISO 14971, which is the standard for medical device risk management. ...
ISO 9001, which is the standard for business quality management systems, and the most current version is ISO 9001:2015.

But all these are voluntary standards, including those that NIST and FDA are developing:

https://healthitsecurity.com/news/fda-outlines-medical-device-cybersecurity-goals

Regards

Caute_Cautim

Re: Which comes first humans or IoT within Hospitals?

Caute_cautim — Mon, 25 Apr 2022 04:02:42 GMT

As a follow on from my previous posting:

https://www.darkreading.com/tech-trends/many-medical-device-makers-skimp-on-security-practices

This reports substantiates my statement that even medical device makers are skimping on good security practices for supporting the very medical devices they develop and sell themselves.

The highlighted bar in the graph is shown below within the piece shows that only 27% of respondents said their company generates and maintains a software bill-of-materials for its products. So if they are not supporting their own software, should all clients ask the question as to what support is available ongoing for the very devices they depend upon to protect human lives?

So the outcome at the present time is that : "The ultimate responsibility for the safety and security of devices lands on the OEM, which could explain why they make it a priority. Of course, both audiences have a long way to go."

We are in big trouble indeed. Many many people could be held to ransom as to who lives and who does not.

Regards

Caute_Cautim