Access Control for Implantable Medical Devices

dc.contributorAalto-yliopistofi
dc.contributorAalto Universityen
dc.contributor.authorCamara, Carmenen_US
dc.contributor.authorPeris-Lopez, Pedroen_US
dc.contributor.authorDe Fuentes, Jose Mariaen_US
dc.contributor.authorMarchal, Samuelen_US
dc.contributor.departmentDepartment of Computer Scienceen
dc.contributor.groupauthorProfessorship Aura Tuomasen
dc.contributor.organizationUniversidad Carlos III de Madriden_US
dc.date.accessioned2021-02-02T09:12:26Z
dc.date.available2021-02-02T09:12:26Z
dc.date.issued2021en_US
dc.description.abstractThe telemetry incorporate in the new generation of Implantable Medical Devices (IMDs) allows remote access and re-programming without interfering with the daily routine of their holders. Despite the benefits of this new feature, such remote access raises new threats related to the access of unauthorized entities to IMDs. Cardiac implants represent the most deployed types of IMD nowadays. Current solutions, to control their remote access, usually use a single feature for authentication. However, this feature is easily replicable, making these authentication schemes vulnerable to attacks. To overcome this limitation, we propose in this article a distance bounding protocol to manage access control of IMDs: ACIMD. ACIMD combines two security mechanisms, namely, identity verification (authentication) and proximity verification (distance checking). The authentication mechanism, formally and informally verified, conforms to the ISO/IEC 9798-2 standard. The distance checking is performed using the whole Electrocardiogram (ECG) signal and relies on the correlation coefficient (comparing an external versus an internal ECG signal) in the Hadamard domain. We evaluate the accuracy and security of ACIMD access control using ECG signals of 199 individuals recorded over 24 hours while considering three adversary strategies. Our results show that ACIMD is 92.92% accurate.en
dc.description.versionPeer revieweden
dc.format.mimetypeapplication/pdfen_US
dc.identifier.citationCamara, C, Peris-Lopez, P, De Fuentes, J M & Marchal, S 2021, ' Access Control for Implantable Medical Devices ', IEEE Transactions on Emerging Topics in Computing, vol. 9, no. 3, pp. 1126-1138 . https://doi.org/10.1109/TETC.2020.2982461en
dc.identifier.doi10.1109/TETC.2020.2982461en_US
dc.identifier.issn2168-6750
dc.identifier.otherPURE UUID: ea362a3e-e46f-404c-a97c-fb79ff1c71e7en_US
dc.identifier.otherPURE ITEMURL: https://research.aalto.fi/en/publications/ea362a3e-e46f-404c-a97c-fb79ff1c71e7en_US
dc.identifier.otherPURE LINK: http://www.scopus.com/inward/record.url?scp=85082037348&partnerID=8YFLogxKen_US
dc.identifier.otherPURE FILEURL: https://research.aalto.fi/files/55556720/SCI_Marchal_Access_Control.09044351_1_.pdfen_US
dc.identifier.urihttps://aaltodoc.aalto.fi/handle/123456789/102612
dc.identifier.urnURN:NBN:fi:aalto-202102021914
dc.language.isoenen
dc.publisherIEEE Computer Society
dc.relation.ispartofseriesIEEE Transactions on Emerging Topics in Computingen
dc.rightsopenAccessen
dc.subject.keywordCybersecurityen_US
dc.subject.keywordDistance Boundingen_US
dc.subject.keywordE-healthen_US
dc.subject.keywordImplantable Medical Devices (IMDs)en_US
dc.subject.keywordRemote Accessen_US
dc.titleAccess Control for Implantable Medical Devicesen
dc.typeA1 Alkuperäisartikkeli tieteellisessä aikakauslehdessäfi
dc.type.versionacceptedVersion

Files