Yang Ming,Xiaopeng Yu,Xiaoqin Shen

DOI: https://doi.org/10.1109/access.2020.3018488

IF: 3.9

2020-01-01

IEEE Access

Abstract:Healthcare Internet of Things (IoT) is an emerging paradigm, which can provide comprehensive and different types of health services and enable various types of medical sensors to monitor patient's health conditions. In the healthcare IoT, patient is deployed with a variety of medical sensors, which continuously monitors and collects patient's sensitive health data that needs specially protection for preventing privacy leakage. To safely send multiple different health data monitored by multiple different medical sensors to multiple corresponding healthcare professionals in one data report, several multi-message and multi-receiver signcryption schemes have been introduced by employing the traditional public key cryptography, identity-based cryptography or certificateless cryptography. However, these schemes suffer from the certificate management, key escrow and key distribution problem. Besides, due to the resource-constraint property of medical sensors, they are unsuitable for healthcare IoT in terms of both performance and privacy requirements. To solve these issues, this paper introduces an efficient anonymous certificate-based multi-message and multi-receiver signcryption scheme for healthcare IoT, where the certificate-based cryptography and elliptic curve cryptography are combined to simplify the certificate management problem, eliminate the key escrow problem, solve the key distribution problem and ensure the privacy-preserving. Furthermore, the security analysis suggests that the proposed scheme is able to achieve the confidentiality, unforgeability, receiver anonymity, sender anonymity and decryption fairness; the performance evaluation indicates that the proposed scheme brings to the lower computation cost and communication cost in comparison to the existing schemes.

Raihan Ur Rasool,Hafiz Farooq Ahmad,Wajid Rafique,Adnan Qayyum,Junaid Qadir

DOI: https://doi.org/10.1016/j.jnca.2022.103332

IF: 7.574

2022-05-01

Journal of Network and Computer Applications

Abstract:Internet of Medical Things (IoMT) supports traditional healthcare systems by providing enhanced scalability, efficiency, reliability, and accuracy of healthcare services. It enables the development of smart hardware as well as software platforms that operate on the basis of communication systems and the algorithms that process the data collected by the sensors to support decision-making. Although IoMT is involved in large-scale services provisioning in the medical paradigm; however, the resource-constrained nature of these devices makes them vulnerable to immense security and privacy issues. These vulnerabilities are not only disastrous for IoMT but threaten the whole healthcare ecosystem, which can in turn bring human lives in danger. During the past few years, threat vectors against IoMT have been evolved in terms of scalability, complexity, and diversity, which makes it challenging to detect and provide stringent defense solutions against these attacks. In this paper, we classify security and privacy challenges against different IoMT variants based on their actual usage in the healthcare domain. We provide a comprehensive attack taxonomy on the overall IoMT infrastructure comprising different device variants as well as elaborate taxonomies of security protocols to mitigate attacks against different devices, algorithms and describe their strengths and weaknesses. We also outline the security and privacy requirements for the development of novel security solutions for all the attack types against IoMT. Finally, we provide a comprehensive list of current challenges and future research directions that must be considered while developing sustainable security solutions for the IoMT infrastructure.

computer science, interdisciplinary applications, software engineering, hardware & architecture

Pankaj Khatiwada,Bian Yang

DOI: https://doi.org/10.3233/SHTI220970

2022-11-03

Abstract:The Internet of Medical Things (IoMT) emerges with new trendsetter device applications, where it defines the incorporation of medical devices with the Internet of Things (IoT). The healthcare sector continues to encounter challenging obstacles that have an impact on the quality of treatment provided to patients. To get rid of this problem, IoMT is being deployed to achieve the high reliability and efficiency of the health system. The IoMT devices are superimposed with clinical information as they contain the details of patient health data, address, and other patient identifiers. By containing such amount of sensitive information, it becomes cumbersome to preserve data privacy and security. Due to inadequate security and privacy precautions, patient health data is susceptible to leakage, which has a direct impact on the patient's life. In addition, the majority of medical devices are susceptible to cyberattacks, putting patient information at risk. Inadequate control of life-support equipment can have a devastating effect on patient outcomes. Thus, this survey intends to review the various security models of IoMT devices using standard techniques to support health care systems. It provides a wide range of literature reviews regarding IoMT systems and compares them with traditional methodologies. This review work exhibits the motivation for current technologies to maintain the security and privacy of patients' data with IoMT devices. The systematic review entails background on security in IoMT devices, techniques for security, usage of diverse validation measures, and also discusses the problems and motivation for future research work.

Shreyshi Shree,Chen Zhou,Masoud Barati

DOI: https://doi.org/10.1007/s11227-023-05657-7

IF: 3.3

2023-09-24

The Journal of Supercomputing

Abstract:The Internet of Medical Things (IoMT) amalgamates the Internet of Things (IoT) with medical devices, revolutionizing health care by providing cost-effective solutions and expediting patient treatments. The burgeoning use of IoMT has ushered in significant data security challenges, prompting investigations into blockchain and IPFS (InterPlanetary File System) solutions. However, many of these solutions lean heavily on key-based encryption, which is increasingly vulnerable to emerging cryptographic advancements, such as quantum computing. Moreover, certain solutions overlook the potential threat posed by resource-abundant attackers like corrupted cloud service providers, who could exploit IPFS nodes for unauthorized data access within an IPFS cluster. Thus, ensuring data confidentiality within the IoMT architecture is a pressing concern. To address these challenges, we propose an innovative architecture that combines blockchain and IPFS, bolstered by a secret sharing algorithm (SSA) for robust data protection. Our architecture leverages SSA to fragment data and securely stores these fragments on publicly accessible IPFS clusters. SSA’s information-theoretic security guarantees data confidentiality, even when a portion of IPFS nodes is compromised and key-based encryption is circumvented. By integrating SSA, our architecture adeptly harnesses the decentralization and scalability advantages of public IPFS clusters. Moreover, the inclusion of a public blockchain within our architecture enhances transparency and trust throughout the data uploading and sharing processes. A prototype of our proposed architecture is implemented and tested within an IoMT-based monitoring scenario to investigate its feasibility, scalability, and performance.

computer science, theory & methods,engineering, electrical & electronic, hardware & architecture

G. Nagarajan,Martin Margala,Siva Shankar S,Prasun Chakrabarti,RI Minu

DOI: https://doi.org/10.1016/j.compeleceng.2024.109129

IF: 4.152

2024-02-23

Computers & Electrical Engineering

Abstract:The Internet of Medical Things (IoMT) promises transformative benefits for patient care and remote monitoring but raises significant security and privacy concerns. Ensuring the trustworthiness and security of IoMT systems at the edge is a critical challenge. This research paper presents a novel framework to address the security and trust issues specific to IoMT environments. The primary objective of this framework is to establish a robust defense against intrusion attempts and to instill trust in edge networks, securing healthcare data and medical devices. To achieve this, the paper introduces an advanced Intrusion Detection System (IDS) optimized for edge networks in the context of IoMT. This paper emphasizes developing an evaluation methodology for appraising the trustworthiness of individual network components, developing an analytical technique for scrutinizing the participation of network entities in ongoing communications, establishing a means to quantify the trust level at the network's periphery or edge, and constructing an energy-efficient trust-based framework for the identification and mitigation of malicious entities operating within the IoMT. Through comprehensive testing, including real-world simulation scenarios, the paper evaluates the performance and effectiveness of the proposed framework, validating its ability to safeguard sensitive healthcare information and support the secure operation of IoMT devices.

engineering, electrical & electronic,computer science, interdisciplinary applications, hardware & architecture

Yan-Ping Wang,Xiao-Fen Wang,Hong-Ning Dai,Xiao-Song Zhang,Yu Su,Muhammad Imran,Nidal Nasser

DOI: https://doi.org/10.1109/globecom48099.2022.10000912

2022-01-01

Abstract:As a rapidly growing subset of the Internet of Thing (IoT), the cloud-based Internet of Medical Thing (IoMT) has been widely applied in remote healthcare industries, which allows the physicians to monitor patients' body parameters remotely to offer continuous and timely healthcare. These healthcare parameters usually contain sensitive information, such as heart rates, glucose levels and etc., and the exposure of them may pose serious threats to the patients' health and lives. To guarantee security and privacy, many IoMT data sharing schemes have been proposed. However, most of these schemes either exhibit a one-to-one data sharing structure or fail to protect the patients' privacy. Since the data usually needs to be shared to different physicians, patients may want to be assisted without revealing their identities. To meet these requirements in healthcare systems, we propose a multi-receiver secure healthcare data sharing scheme, in which the patients are allowed to share their IoMT data to multiple physicians simultaneously for a multidisciplinary treatment, and the conditional anonymity is achieved where data source authentication is provided without revealing the patient's identity. When the patient health condition is abnormal, the hospital can correctly and quickly trace the patient's identity and inform him/her immediately. Our scheme is formally proved to achieve multiple security properties including confidentiality, unforgeability and anonymity. Simulation results demonstrate that the proposed scheme is efficient and practical.

Firuz Kamalov,Behrouz Pourghebleh,Mehdi Gheisari,Yang Liu,Sherif Moussa

DOI: https://doi.org/10.3390/su15043317

IF: 3.9

2023-02-11

Sustainability

Abstract:The Internet of Medical Things (IoMT), an application of the Internet of Things (IoT) in the medical domain, allows data to be transmitted across communication networks. In particular, IoMT can help improve the quality of life of citizens and older people by monitoring and managing the body's vital signs, including blood pressure, temperature, heart rate, and others. Since IoMT has become the main platform for information exchange and making high-level decisions, it is necessary to guarantee its reliability and security. The growth of IoMT in recent decades has attracted the interest of many experts. This study provides an in-depth analysis of IoT and IoMT by focusing on security concerns from different points of view, making this comprehensive survey unique compared to other existing studies. A total of 187 articles from 2010 to 2022 are collected and categorized according to the type of applications, year of publications, variety of applications, and other novel perspectives. We compare the current studies based on the above criteria and provide a comprehensive analysis to pave the way for researchers working in this area. In addition, we highlight the trends and future work. We have found that blockchain, as a key technology, has solved many problems of security, authentication, and maintenance of IoT systems due to the decentralized nature of the blockchain. In the current study, this technology is examined from the application fields' points of view, especially in the health sector, due to its additional importance compared to other fields.

environmental sciences,environmental studies,green & sustainable science & technology

Maria Papaioannou,Marina Karageorgou,Georgios Mantas,Victor Sucasas,Ismael Essop,Jonathan Rodriguez,Dimitrios Lymberopoulos

DOI: https://doi.org/10.1002/ett.4049

IF: 3.6

2020-07-23

Transactions on Emerging Telecommunications Technologies

Abstract:<p>Internet of medical things (IoMT) is an emerging technology aiming to improve the patient's quality of life by enabling personalized e‐health services without limitations on time and location. Nevertheless, IoMT devices (eg, medical sensors) that constitute the key underlying elements of the IoMT edge network are vulnerable to various types of security threats and thus, they pose a significant risk to patient's privacy and safety. Based on that and the fact that the security is a critical factor for the successful integration of IoMT technology into pervasive healthcare systems, there is an urgent need for novel security mechanisms to preserve the security of the IoMT edge network. Toward this direction, the first step is the comprehensive understanding of existing and potential threats to the IoMT edge network environment. Thus, in this article, we provide a categorization of security threats to the edge network environment based on the major security objectives that they target. Moreover, we present a categorization of security countermeasures, derived from the literature, against threats to IoMT edge networks. The authors' intent is to provide a foundation for organizing research efforts toward the development of proper security countermeasures for protecting IoMT edge networks against internal and external threats.</p>

telecommunications

Ali Ghubaish,Tara Salman,Maede Zolanvari,Devrim Unal,Abdulla Al-Ali,Raj Jain

DOI: https://doi.org/10.1109/JIOT.2020.3045653

2023-02-09

Abstract:The rapid evolutions in micro-computing, mini-hardware manufacturing, and machine to machine (M2M) communications have enabled novel Internet of Things (IoT) solutions to reshape many networking applications. Healthcare systems are among these applications that have been revolutionized with IoT, introducing an IoT branch known as the Internet of Medical Things (IoMT) systems. IoMT systems allow remote monitoring of patients with chronic diseases. Thus, it can provide timely patients' diagnostic that can save their life in case of emergencies. However, security in these critical systems is a major challenge facing their wide utilization. In this paper, we present state-of-the-art techniques to secure IoMT systems' data during collection, transmission, and storage. We comprehensively overview IoMT systems' potential attacks, including physical and network attacks. Our findings reveal that most security techniques do not consider various types of attacks. Hence, we propose a security framework that combines several security techniques. The framework covers IoMT security requirements and can mitigate most of its known attacks.

Cryptography and Security

Mohamed Elhoseny,Navod Neranjan Thilakarathne,Mohammed I. Alghamdi,Rakesh Kumar Mahendran,Akber Abid Gardezi,Hesiri Weerasinghe,Anuradhi Welhenge

DOI: https://doi.org/10.3390/su132111645

IF: 3.9

2021-10-21

Sustainability

Abstract:The rapid development and the expansion of Internet of Things (IoT)-powered technologies have strengthened the way we live and the quality of our lives in many ways by combining Internet and communication technologies through its ubiquitous nature. As a novel technological paradigm, this IoT is being served in many application domains including healthcare, surveillance, manufacturing, industrial automation, smart homes, the military, etc. Medical Internet of Things (MIoT), or the use of IoT in healthcare, is becoming a booming trend towards improving the health and wellbeing of billions of people by offering smooth and seamless medical facilities and by enhancing the services provided by medical practitioners, nurses, pharmaceutical companies, and other related government and non-government organizations. In recent times, this MIoT has gained higher attention for its potential to alleviate the massive burden on global healthcare, which has been caused by the rise of chronic diseases, the aging population, and emergency situations such as the recent COVID-19 global pandemic, where many government and non-government medical resources were challenged, owing to the rising demand for medical resources. It is evident that with this recent growing demand for MIoT, the associated technologies and its interconnected, heterogeneous nature adds new concerns as it becomes accessible to confidential patient data, often without patient or the medical staff consciousness, as the security and privacy of MIoT devices and technologies are often overlooked and undermined by relevant stakeholders. Hence, the growing security breaches that target the MIoT in healthcare are making the security and privacy of Medical IoT a crucial topic that is worth scrutinizing. In this study, we examined the current state of security and privacy of the MIoT, which has become of utmost concern among many security experts and researchers due to its rapid demand in recent times. Nevertheless, pertaining to the current state of security and privacy, we also examine and discuss a number of attack use cases, countermeasures and solutions, recent challenges, and anticipated future directions where further attention is required through this study.

environmental sciences,environmental studies,green & sustainable science & technology

Rachida Hireche,Houssem Mansouri,Al-Sakib Khan Pathan

DOI: https://doi.org/10.3390/jcp2030033

2022-08-17

Journal of Cybersecurity and Privacy

Abstract:The Internet of Medical Things (IoMT) has become a strategic priority for future e-healthcare because of its ability to improve patient care and its scope of providing more reliable clinical data, increasing efficiency, and reducing costs. It is no wonder that many healthcare institutions nowadays like to harness the benefits offered by the IoMT. In fact, it is an infrastructure with connected medical devices, software applications, and care systems and services. However, the accelerated adoption of connected devices also has a serious side effect: it obscures the broader need to meet the requirements of standard security for modern converged environments (even beyond connected medical devices). Adding up different types and numbers of devices risks creating significant security vulnerabilities. In this paper, we have undertaken a study of various security techniques dedicated to this environment during recent years. This study enables us to classify these techniques and to characterize them in order to benefit from their positive aspects.

computer science, information systems, interdisciplinary applications, software engineering

Wajid Rafique,Maqbool Khan,Salabat Khan,Juma Said Ally

DOI: https://doi.org/10.1155/2023/2558469

2023-04-23

Wireless Communications and Mobile Computing

Abstract:The Internet of Medical Things (IoMT) connects a huge amount of smart sensors with the Internet for healthcare service provisioning. IoMT's privacy-preserving becomes a challenge considering the life-saving data collected and transferred through IoMT. Traditional privacy protection techniques use centralized management strategies, which lead to a single point of failure, lack of trust, state modification, information disclosure, and identity theft. Edge computing enables local computation of IoMT data, which reduces traffic to the cloud and also helps in accomplishing latency-sensitive healthcare applications and services. This paper proposes a novel framework (i.e., SecureMed) that uses blockchain-based distributed authentication implemented at the edge cloudlets to enforce privacy protection. In SecureMed, IoMT devices interact with edge cloudlets using smart contracts. It uses trusted edge nodes to implement an authentication algorithm that uses public/private key matching to authenticate IoMT. Experimental evaluation performed using the Pythereum blockchain shows that SecureMed outperforms the traditional blockchain scheme based on latency, bandwidth consumption, deployment time, scalability, and accuracy. Therefore, it can be used to protect the edge-enabled IoMT from privacy attacks and to ensure end-to-end healthcare service provisioning.

computer science, information systems,telecommunications,engineering, electrical & electronic

Ayman A. El-Saleh,Abdul Manan Sheikh,Mahmoud A. M. Albreem,Mohamed Shaik Honnurvali

DOI: https://doi.org/10.1007/s11276-024-03764-8

IF: 2.701

2024-05-22

Wireless Networks

Abstract:The Internet of Medical Things (IoMT) is a transformative concept in healthcare, leveraging the power of connected devices and technology to improve patient care and health outcomes. These devices are typically connected to the internet or a network and can communicate with each other to exchange data and provide insights to healthcare providers, patients, and other stakeholders. Advanced digital technologies like artificial intelligence, machine learning, and Blockchain integrated into the Internet of Medical Things (IoMT) can better mitigate the impact of pandemics and protect public health. IoMT utilizes medical sensors to capture real-time physiological data of patients and is available to a medical professional to diagnose, recognize, analyze, and make appropriate decisions. Data breaches or cyberattacks could compromise the security and integrity of IoMT devices and data, exposing sensitive information or causing malfunctions or disruptions. Consequently, to make IoMT systems reliable, data protection and secure communication must conform to security standards. Blockchain technology is being used in the healthcare industry to ensure the security of patient records and to streamline the sharing of information among healthcare providers, laboratories, pharmaceutical firms, and other healthcare providers. Overall, digital technologies have been instrumental in managing the COVID-19 pandemic, enabling more efficient surveillance, response, and care delivery. By leveraging these technologies, public health authorities and healthcare providers have been able to better mitigate the impact of the pandemic and protect public health.

computer science, information systems,telecommunications,engineering, electrical & electronic

George W. Jackson Jr.,Shawon Rahman

DOI: https://doi.org/10.48550/arXiv.1908.00666

2019-08-02

Abstract:As device interconnectivity and ubiquitous computing continues to proliferate healthcare, the Medical Internet of Things (MIoT), also well known as the, Internet of Medical Things (IoMT) or the Internet of Healthcare Things (IoHT), is certain to play a major role in the health, and well-being of billions of people across the globe. When it comes to issues of cybersecurity risks and threats connected to the IoT in all of its various flavors the emphasis has been on technical challenges and technical solution. However, especially in the area of healthcare there is another substantial and potentially grave challenge. It is the challenge of thoroughly and accurately communicating the nature and extent of cybersecurity risks and threats to patients who are reliant upon these interconnected healthcare technologies to improve and even preserve their lives. This case study was conducted to assess the scope and depth of cybersecurity risk and threat communications delivered to an extremely vulnerable patient population, semi-structured interviews were held with cardiac medical device specialists across the United States. This research contributes scientific data in the field of healthcare cybersecurity and assists scholars and practitioners in advancing education and research in the field of MIoT patient communications.

Computers and Society,Cryptography and Security

Surjeet Dalal,Umesh Kumar Lilhore,Sarita Simaiya,Ashish Sharma,Vivek Jaglan,Manish Kumar,Monika Jangra,Nitin Goyal,Arun Kumar Rana

DOI: https://doi.org/10.32629/jai.v6i3.592

2023-09-15

Journal of Autonomous Intelligence

Abstract:The Internet of Medical Things (IoMT) industry has grown lightning during the estimated time frame. Privacy and security are essential concerns given the scale and widespread use of IoMT networks. Blending healthcare data in one place storage device to prepare an effective predictive model, on the other hand, increases more severe security and privacy issues, ownership, and regulation. An advanced system is required to enhance information utilization while restricting privacy issues. This research presents a new architecture to address security and privacy challenges in e-healthcare services in Healthcare 5.0. This paper integrates the distributed ledger technology (DLT) with IoMT. This integration has become necessary due to the growing demand for e-health-related technologies and services. The proposed solution in this research is based on a Blockchain framework to enhance medical data privacy and integrity. This research evidence found that Blockchain can overcome IoMT privacy and data protection. The proposed framework has far-reaching consequences for the medical field. The proposed method has reduced Commit time by up to 10 seconds, and Commutative probability has been gained to 88%. It has advantages, including faster data exchange, less duplication of effort, and more secure patient information.

Mohan Krishna Kagita,Navod Thilakarathne,Thippa Reddy Gadekallu,Praveen Kumar Reddy Maddikunta

DOI: https://doi.org/10.48550/arXiv.2009.05394

2020-09-11

Abstract:The Internet of Medical Things (IoMT) are increasing the accuracy, reliability, and the production capability of electronic devices by playing a very important part in the industry of healthcare. The available medical resources and services related to healthcare are working to get an interconnection with each other by the digital healthcare system by the contribution of the researchers. Sensors, wearable devices, medical devices, and clinical devices are all connected to form an ecosystem of the Internet of Medical Things. The different applications of healthcare are enabled by the Internet of Medical Things to reduce the healthcare costs, to attend the medical responses on time and it also helps in increasing the quality of the medical treatment. The healthcare industry is transformed by the Internet of Medical Things as it delivers targeted and personalized medical care and it also seamlessly enables the communication of medical data. Devices used in the medical field and their application are connected to the system of healthcare of Information technology with the help of the digital world.

Computers and Society,Networking and Internet Architecture

Randhir Kumar,Rakesh Tripathi

DOI: https://doi.org/10.1007/s11227-020-03570-x

IF: 3.3

2021-01-12

The Journal of Supercomputing

Abstract:The Internet of Medical Things (IoMT) is the next frontier in the digital revolution and it leverages IoT in the healthcare domain. The underlying technology has changed the current healthcare system by collecting real-time data of patients and providing a patient motioning system. But IoMT also presents a big challenge for data storage management, security, and privacy due to cloud-based storage. Today, this large volume of IoMT generated medical data is stored in the centralized storage system. However, centralization of patient sensitive information leads to a single point of failure, privacy, and security concern. To address these issues, we propose a smart contracts enabled consortium blockchain network. We integrated interplanetary file systems (IPFS) cluster node where smart contracts are deployed at the initial stage for authentication of patient's and medical devices, the same cluster layer is also proposed as a distributed data storage layer for device-generated data after authentication and these data are securely transmitted over the consortium blockchain. The IPFS cluster node ensures the security and authentication of the devices and it also provides secure storage management in IoMT enabled healthcare system. The consortium network enables the privacy of data owing to hash-based storage in a block of IoMT enabled healthcare network.

Yazeed Yasin Ghadi,Tehseen Mazhar,Tariq Shahzad,Muhammad Amir Khan,Alaa Abd-Alrazaq,Arfan Ahmed,Habib Hamam

DOI: https://doi.org/10.1038/s41598-024-68529-x

2024-08-08

Abstract:This study explores integrating blockchain technology into the Internet of Medical Things (IoMT) to address security and privacy challenges. Blockchain's transparency, confidentiality, and decentralization offer significant potential benefits in the healthcare domain. The research examines various blockchain components, layers, and protocols, highlighting their role in IoMT. It also explores IoMT applications, security challenges, and methods for integrating blockchain to enhance security. Blockchain integration can be vital in securing and managing this data while preserving patient privacy. It also opens up new possibilities in healthcare, medical research, and data management. The results provide a practical approach to handling a large amount of data from IoMT devices. This strategy makes effective use of data resource fragmentation and encryption techniques. It is essential to have well-defined standards and norms, especially in the healthcare sector, where upholding safety and protecting the confidentiality of information are critical. These results illustrate that it is essential to follow standards like HIPAA, and blockchain technology can help ensure these criteria are met. Furthermore, the study explores the potential benefits of blockchain technology for enhancing inter-system communication in the healthcare industry while maintaining patient privacy protection. The results highlight the effectiveness of blockchain's consistency and cryptographic techniques in combining identity management and healthcare data protection, protecting patient privacy and data integrity. Blockchain is an unchangeable distributed ledger system. In short, the paper provides important insights into how blockchain technology may transform the healthcare industry by effectively addressing significant challenges and generating legal, safe, and interoperable solutions. Researchers, doctors, and graduate students are the audience for our paper.

Dominic P. Mulligan,Gustavo Petri,Nick Spinale,Gareth Stockwell,Hugo J. M. Vincent

DOI: https://doi.org/10.1109/seed51797.2021.00025

2021-09-01

Abstract:The semiconductor industry is witnessing a nascent security paradigm shift in the rise of Confidential Computing. Driven by the need to protect computations delegated to co-tenanted machines operated by Cloud Computing services, mainstream instruction set architectures are gradually introducing novel features that can be used to establish protected isolates offering strong integrity and confidentiality guarantees to code and data contained within. Coupled with a Remote Attestation protocol, a third-party may request the launch of an isolate on an otherwise untrusted machine and know—with a high degree of assurance—that a payload of code and data was indeed loaded into a legitimate isolate with a particular configuration. We argue that this ability to reliably establish a safe “beach-head” on an untrusted third-party’s machine has far-reaching consequences with applications beyond protecting workloads delegated to Cloud Computing services. In a future world where facilities for Confidential Computing are widely deployed and used, we imagine a utopia where inadvertent data leakage is a curiosity of a bygone age, with encrypted data moving from isolate to isolate and never resting in plaintext. Moreover, data is only released in explicitly delimited ways for processing, with systems and individuals exhibiting fine-grained control over data. We report on recent activities within Arm in attempting to realize this vision, and hope that this paper acts as a “call to arms” to others to join with us in fully exploring the potential of these emerging technologies.

Jahanzeb Shahid,Rizwan Ahmad,Adnan K. Kiani,Tahir Ahmad,Saqib Saeed,Abdullah M. Almuhaideb

DOI: https://doi.org/10.3390/app12041927

2022-02-12

Applied Sciences

Abstract:The Internet of Things (IoT) is an emerging field consisting of Internet-based globally connected network architecture. A subset of IoT is the Internet of Healthcare Things (IoHT) that consists of smart healthcare devices having significant importance in monitoring, processing, storing, and transmitting sensitive information. It is experiencing novel challenges regarding data privacy protection. This article discusses different components of IoHT and categorizes various healthcare devices based on their functionality and deployment. This article highlights the possible points and reasons for data leakage, such as conflicts in laws, the use of sub-standard devices, lack of awareness, and the non-availability of dedicated local law enforcement agencies. This article draws attention to the escalating demand for a suitable regulatory framework and analyzes compliance problems of IoHT devices concerning healthcare data privacy and protection regulations. Furthermore, the article provides some recommendations to improve the security and privacy of IoHT implementation.