Threat modeling for mobile health systems

Mobile Health (mHealth) is on the rise and it is likely to reduce costs and improve the quality of healthcare. It tightly intersects with the Internet of Things (IoT) and comes with special challenges in terms of interoperability and security. This paper focuses on security challenges and offers a m...

Full description

Saved in:
Bibliographic Details
Published in2018 IEEE Wireless Communications and Networking Conference Workshops (WCNCW) pp. 314 - 319
Main Authors Cagnazzo, Matteo, Hertlein, Markus, Holz, Thorsten, Pohlmann, Norbert
Format Conference Proceeding
LanguageEnglish
Published IEEE 01.04.2018
Subjects
Conferences
Internet of Things
Medical services
Personnel
Security
Wearable sensors
Online AccessGet full text

Cover

More Information
Summary:Mobile Health (mHealth) is on the rise and it is likely to reduce costs and improve the quality of healthcare. It tightly intersects with the Internet of Things (IoT) and comes with special challenges in terms of interoperability and security. This paper focuses on security challenges and offers a mitigation solution especially with a focus on authentication and encryption for resource constrained devices. It identifies assets in a prototyped mHealth ecosystem and classifies threats with the STRIDE methodology. Furthermore the paper identifies associated risk levels using DREAD and outlines possible mitigation strategies to provide a reasonable trustworthy environment.
DOI:10.1109/WCNCW.2018.8369033