Featured Product
This Week in Quality Digest Live

More Videos

Health Care Features
The Value of Risk-Based Supplier Inspections in Pharma Quality Management
Kari Miller
An effective strategy requires recruiting qualified personnel familiar with the process and technology
Beware of These Common Types of Bias
William A. Levinson
People can draw the wrong conclusions due to survivor, survey, and bad news bias.
Stop Bullying Yourself and Silence Your Inner Critic
The Un-Comfort Zone With Robert Wilson
Here’s how to control negative self-talk
Democratizing Precision Medicine
Merilee Kern
Radicle Science brings AI-driven clinical trials to cannabinoid and wellness research
Nanoparticles Are the Future of Medicine
Duxin Sun
Working at such small scale becomes the next big thing

More Features

Health Care News
Students Imagine Better Products, Services, and Infrastructure for an Aging Society
MIT course focuses on the impact of increased longevity on systems and markets
Qualio Focuses on Building a New, Collaborative Life Sciences Ecosystem
Delivers time, cost, and efficiency savings while streamlining compliance activity
NIST Prize Challenge Seeks Innovative Incident-Command Dashboards for Public Safety
First responders may benefit from NIST contest to reward high-quality incident command dashboards
Greenlight Guru Acquires Electronic Data Capture Solution SMART-TRIAL
Enhances clinical data management for medtech companies
ETQ Announces Advanced Lab Investigation Application
Winter 2022 release of Reliance QMS focuses on usability, mobility, and actionable insights
New Device Can Diagnose Covid-19 From Saliva Samples
The tabletop diagnostic yields results in an hour and can be programmed to detect variants of the SARS-CoV-2 virus
NIST Prize Challenge Launches Research for Unmanned Aircraft in Search and Rescue
First Responder UAS Triple Challenge focuses on using optical sensors and data analysis to improve image detection and location
Greenlight Guru Launches Greenlight Guru Academy
Free education source for global medical device community
Streamlined Salmonella Testing Drives Efficiencies, Enables Flexibility, Solves Problems
Extended validation of Thermo Scientific Salmonella Precis Method simplifies workflows and encompasses challenging food matrices

More News

NIST

Health Care

NCCoE Seeks Vendors to Help Secure Wireless Medical Devices

Develop a standards-based example using available products and services

Published: Tuesday, February 23, 2016 - 16:22

(NIST: Gaitherburg, MD) -- Medical devices such as the infusion pumps that deliver medication intravenously were once standalone instruments that interacted only with the patient. Today, they have operating systems and communications hardware that allow them to connect to other devices and networks. While this technology has created more powerful tools and the potential for improved patient care, it also creates new safety and security risks.

The National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) is developing example cybersecurity solutions that demonstrate how to protect wireless infusion pumps from unintended errors or unauthorized access, including malicious acts.

A recently released white paper reviews the challenges and potential solution requirements to better secure the pumps on an enterprise network. It updates a December 2014 draft developed with input from healthcare organizations and providers. The new draft incorporates feedback collected during a public comment period.

A recently published Federal Register notice invites technology vendors interested in working on a standards-based example solution, or reference design, to work with the center. Those that participate will provide commercially available products and services as modules in the end-to-end example solution.

NIST does not endorse particular products but uses them as exemplars of capabilities that conform to standards and best practices. To adopt this approach to better secure wireless infusion pumps, healthcare organizations can use similar products with the same capabilities. The goal is to help organizations and providers implement improved security controls by identifying the people and systems that interact with infusion pumps, defining the interactions between those people and systems, performing a risk assessment, and identifying mitigating security technologies.

The NCCoE is a partnership of NIST, the State of Maryland, and Maryland’s Montgomery County. It accelerates the adoption of practical, standards-based cybersecurity solutions for businesses and public organizations by demonstrating how commercially available technologies can be integrated to potentially solve cybersecurity challenges.

By working with industry stakeholders and technology vendors, the NCCoE develops a reference design or example solution to meet pressing cybersecurity challenges and then publishes that information in a freely available NIST Cybersecurity Practice Guide. The guide includes a materials list and instructions for implementing the reference design. The NCCoE will seek the public's feedback on the reference designs and improve them accordingly.

Companies interested in participating in the reference design project must submit a letter of interest in which they outline their proposed contribution. Full details of this process are published in the Federal Register notice (docket number 151217999-5999-01). Those selected to participate will enter into a cooperative research and development agreement with NIST.

To learn more about the NCCoE and its projects, visit the center’s website.

Discuss

About The Author

NIST’s picture

NIST

Founded in 1901, the National Institute of Standards and Technology (NIST) is a nonregulatory federal agency within the U.S. Department of Commerce. Headquartered in Gaithersburg, Maryland, NIST’s mission is to promote U.S. innovation and industrial competitiveness by advancing measurement science, standards, and technology in ways that enhance economic security and improve our quality of life.