Abstract
The Internet of Medical Things (IoMT) has revolutionized health care services by providing significant benefits in terms of patient well being and relevant costs. Traditional risk assessment methodologies, however, cannot be effectively applied in the IoMT context since IoMT devices form part of a distributed and trustless environment and naturally support functionalities that favor reliability and usability instead of security. In this work we present a survey of risk assessment and mitigation methodologies for IoMT. For conducting the survey, we assess two streams of literature. First, we systematically review and classify the current scientific research in IoMT risk assessment methodologies. Second, we review existing standards/best practices for IoMT security assessment and mitigation in order to i) provide a comparative assessment of these standards/best practices on the basis of predefined criteria (scope and/or coverage, maturity level, and relevant risk methodology applied) and ii) identify common themes for IoMT security controls. Based on the analysis, we provide various IoMT research and implementation gaps along with a road map of fruitful areas for future research. The paper could be of significant value to security assessment researchers and policymakers/stakeholders in the health care industry.
Highlights
T HE Internet of Medical Things (IoMT) consists of highrisk, high-value devices which are placed and interconnected to hospital and other healthcare networks
We have provided a taxonomy of the available IoMT risk assessment methodologies by using a three-layer approach
Based on a thorough analysis of various security standards and best industry approaches we have provided a comparative appraisal of current IoMT implementation practices and we have further derived various IoMT security controls
Summary
T HE Internet of Medical Things (IoMT) consists of highrisk, high-value devices which are placed and interconnected to hospital and other healthcare networks. Through the healthcare provider networks, an IoMT device transmits information (e.g. health or technical data) either to the cloud or to internal servers in order to monitor a patient’s health parameters and help prevent, diagnose or treat diseases. According to [2], more than 3.7 million connected medical devices are in use, for monitoring vital physiologic parameters of patients, improving healthcare decision-making. Recent reports predict an exponential growth of the IoMT market worldwide, up to $136.8 billion by 2021, according to Allied Market Research [3]. This is underlined by the fact that the healthcare system will increase its needs as the population continues to age
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
