Digital technology provides unique opportunities to revolutionize the healthcare ecosystem and health research. However, this comes with serious security, safety, and privacy threats. The healthcare sector has been proven unequipped and unready to face cyberattacks while its vulnerabilities are being systematically exploited by attackers. The growing need and use of medical devices and smart equipment, the complexity of operations and the incompatible systems are leaving healthcare organizations exposed to various malware, including ransomware, which result in compromised healthcare access, quality, safety and care. To fully benefit from the advantages of technology, cybersecurity issues need to be resolved. Cybersecurity measures are being suggested via a number of healthcare standards which are often contradicting and confusing, making these measures ineffective and difficult to implement. To place a solid foundation for the healthcare sector, in improving the understanding of complex cybersecurity issues, this paper explores the existing vulnerabilities in the health care critical information infrastructures which are used in cyberattacks and discusses the reasons why this sector is under attack. Furthermore, the existing security standards in healthcare are presented alongside with their implementation challenges. The paper also discusses the use of living labs as a novel way to discover how to practically implement cybersecurity measures and also provides a set of recommendations as future steps. Finally, to our knowledge this is the first paper that analyses security in the context of living labs and provides suggestions relevant to this context.
|Title of host publication||16th International Conference on Availability, Reliability and Security, ARES 2021|
|Publisher||Association for Computing Machinery|
|Publication status||Published - 17 Aug 2021|
|Event||16th International Conference on Availability, Reliability and Security, ARES 2021 - Virtual, Online, Austria|
Duration: 17 Aug 2021 → 20 Aug 2021
|Name||ACM International Conference Proceeding Series|
|Conference||16th International Conference on Availability, Reliability and Security, ARES 2021|
|Period||17/08/21 → 20/08/21|
Bibliographical noteFunding Information:
The research conducted in this paper was triggered by the authors’ involvement in the project ‘A Dynamic and Self-Organized Artificial Swarm Intelligence Solution for Security and Privacy Threats in Healthcare ICT Infrastructures’ (AI4HEALTHSEC). The authors are grateful for the financial support of this project that has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 883273. The first author would also like to acknowledge the project ‘Affective based integrated care for better quality of life’ (TENDER), funded by the European Union’s Horizon 2020 research and innovation programme under grant agreement No 875325. The views expressed in this paper represent only the views of the authors and not of the European Commission or the partners in the above-mentioned projects.
© 2021 ACM.
Copyright 2021 Elsevier B.V., All rights reserved.
- Digital Health
- Living labs
- Security Standards