Securing Wireless Infusion Pumps in Healthcare Delivery Organizations   [open pdf - 9MB]

From the Executive Summary: "[1] Broad technological advancements have contributed to the Internet of Things (IoT) phenomenon, where physical devices now have technology that allow them to connect to the internet and communicate with other devices or systems. With billions of devices being connected to the internet, many industries, including healthcare, have leveraged, or are beginning to leverage, IoT devices to improve operational efficiency and enhance innovation. [2] Medical devices, such as infusion pumps, were once standalone instruments that interacted only with the patient or medical provider. With technological improvements designed to enhance patient care, these devices now connect wirelessly to a variety of systems, networks, and other tools within a healthcare delivery organization (HDO)--ultimately contributing to the Internet of Medical Things (IoMT). [3] As IoMT grows, cybersecurity risks have risen. According to the Association for the Advancement of Medical Instrumentation (AAMI) Technical Information Report 57 (TIR57), 'this has created a new source of risk for [the] safe operation [of medical devices].' In particular, the wireless infusion pump ecosystem (the pump, the network, and the data stored in and on a pump) faces a range of threats, including unauthorized access to protected health information (PHI), changes to prescribed drug doses, and interference with a pump's function."

Report Number:
NIST Special Publication 1800-8; National Institute of Standards and Technology Special Publication 1800-8
Public Domain
Retrieved From:
Federal Depository Library Program: https://permanent.fdlp.gov/
Media Type:
Help with citations