Risk-Oriented Cybersecurity for Medical Devices

This article introduces the risk-oriented medical cybersecurity. We start with a combined security and safety life-cycle for medical products and services, built upon Medical SPICE. Starting with a connected TARA (threat and Risk Analysis) and HARA (Hazard and Risk analysis) we converge to security requirements to harden safety requirements, and thus provide best practices on security engineering. With verification and validation, we investigate static code analysis but also towards specific testing such as fuzzing and penetration testing for medical devices. We show hands-on examples on basis of the COMPASS SecurityCheck and directly connected grey-box PenTesting. The presentation provides hands-on examples and introduces to a hands-on TARA and related PenTest activity.

용량 : 4.44 MB
MD5 Hash : a1bc2a547dfdd24a70e49b2257c23b8e

아래 양식을 작성하시면 이메일로 다운로드 링크를 받아보실 수 있습니다.

* 필수

이전 페이지