1 / 23

Secure Distributed Record and Replay for Medical Devices in Operating Rooms

Explore the potential vulnerabilities in modern operating rooms due to interconnected devices and discover the innovative solution of BEEER's Architecture Distributed Record and Replay (DRNR) system. This system allows for the simultaneous recording and replaying of incidents from each device in a synchronized manner, ensuring comprehensive monitoring and security. Learn about the challenges faced by hospitals and manufacturers concerning device security and the need for solutions like BEEER. Discover how this architecture enhances cybersecurity measures by enabling efficient monitoring and auditing of device logs, ensuring a safer healthcare environment.

gregoryr
Download Presentation

Secure Distributed Record and Replay for Medical Devices in Operating Rooms

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. BEEER: Distributed Record and Replay for Medical Devices in Hospital Operating Rooms. AvestaHojjati, Yunhui Long, Soteris Demetriou, Carl A. Gunter #HotSoS 2019

  2. BEFORE THE OPERATING ROOM: MAGICIANS, PRIESTS, AND PHYSICIANS

  3. The future of Operating Rooms • System integration and technical standards • Telecollaboration • Surgical Robotics • Intraoperative Diagnosis, Monitoring, and Imagining

  4. A Target market for attackers: • On average each US hospital has 10-15 connected devices per bed. • 53% percent of healthcare facilities and 43% of manufacturers do not carry out any tests on these devices. • Only 51% of device makers abide by the FDA guidelines. • An LA hospital paid out $17,000 when hackers took control of their computer

  5. Possible Solutions: • Deploying Intrusion Detection Systems (IDS) such as active monitoring • Deploying Intrusion Prevention Systems (IPS) such as firewalls

  6. Possible Solutions: • Deploying Intrusion Detection Systems (IDS) such as active monitoring • Deploying Intrusion Prevention Systems (IPS) such as firewalls • Recoding and auditing the device logs

  7. In modern operating rooms, the output of one device will be the input of another device.

  8. Which device was actually compromised?

  9. Proposed Solution: BEEER’s Architecture Distributed Record and Replay (DRNR) with ability to record each device individually with a universal time and capability of replaying an incident from each device in parallel

  10. BEEER Overview Record • We modified Arnold (a record and reply systemforsingledevices) • Two approaches for recording • Device Synchronization with NTP • Projection Protocol Replay • Log Merging • Token Distribution

  11. Goal of Distributed Recording Traditional Distributed System: • Local Causality: Preserve event ordering on the same device • Message Causality: Receiving a message m is ordered after sending m Cyber Physical System (CPS): CPS Causality

  12. Onset Onset: The time it takes for a medication to have physiological effect on a patient. Onset of Insulin: 5 - 120 minutes

  13. CPSAssumption CPS (Cyber Physical System) Assumption: Onset time > Network Latency CPS Causality: Preserve ordering of events with intervals greater than tcps CPS Causality

  14. ProjectionProtocol:Example

  15. Projection Protocol

  16. Projection Protocol:Batching

  17. Replay: Token Distribution

  18. Evaluation: Replay

  19. Summary • Medical equipment are one of the most vulnerable embedded devices • We designed, deployed, and evaluated a Distributed Record and Replay (DRnR) solution that records every equipment in an Operating Room • Our solution is available for other embedded devices as long as they support a form of Linux as their operating system

More Related