Medical Device Security

Monday, January 25, 2016 - 9:00am10:00am

Kevin Fu, University of Michigan

Abstract: 

Today, it would be difficult to find medical device technology that does not critically depend on computer software. Network connectivity and wireless communication has transformed the delivery of patient care. The technology often enables patients to lead more normal and healthy lives. However, medical devices that rely on software (e.g., drug infusion pumps, linear accelerators, pacemakers) also inherit the pesky cybersecurity risks endemic to computing. What's special about medical devices and cybersecurity? What's hype and what's real? What can history teach us? How are international standards bodies and regulatory cybersecurity requirements changing the global manufacture of medical devices? This talk will provide a glimpse into the risks, benefits, and regulatory issues for medical device cybersecurity and innovation of trustworthy medical device software.

Kevin Fu, University of Michigan

Kevin Fu is Associate Professor of Electrical Engineering and Computer Science at the University of Michigan where he directs the Archimedes Center for Medical Device Security and the SPQR.eecs.umich.edu group. His research investigates how to achieve trustworthy computing on embedded devices with application to health care, commerce, and communication. His participation in the provocative 2008 research paper analyzing the security of a pacemaker/defibrillator led to a watershed moment in cybersecurity for medical device manufacturing and regulatory science.

Professor Fu received his Ph.D. in EECS from MIT where his doctoral research pertained to secure storage and web authentication. He received a Sloan Research Fellowship, NSF CAREER award, Fed100 Award, and best paper awards from various academic silos of computing. His research is featured in critical articles by the New York Times, Wall Street Journal, and National Public Radio. Kevin was named MIT Technology Review TR35 Innovator of the Year for work on medical device security. He has testified in Congress on health matters and has written commissioned work for the Institute of Medicine of the National Academies. He served as a visiting scientist at the Food and Drug Administration, the Beth Israel Deaconess Medical Center of Harvard Medical School, Microsoft Research, and MIT CSAIL. His previous employers include Bellcore, Cisco Systems, HP Labs, and Holland Community Hospital. He is a member of the ACM Committee on Computers and Public Policy and the NIST Information Security and Privacy Advisory Board. He is a principal investigator of THaW.org. Prior to joining Michigan, he served on the faculty at UMass Amherst. Kevin also holds a certificate of achievement in artisanal bread making from the French Culinary Institute.

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

BibTeX
@conference {206251,
author = {Kevin Fu},
title = {Medical Device Security},
year = {2016},
address = {San Francisco, CA},
publisher = {{USENIX} Association},
month = jan,
}

Presentation Video