Article Details

Copyright Statement: This is an open access article licensed under a Creative Commons Attribution 4.0 International License, which permits unrestricted use, distribution, and reproduction in any medium, even commercially as long as the original work is properly cited.

Legal Requirements towards Enhancing the Security of Medical Devices

Author 1: Prosper K. Yeng
Author 2: Stephen D. Wulthusen
Author 3: Bian Yang

Download PDF

Digital Object Identifier (DOI) : 10.14569/IJACSA.2020.0111181

Article Published in International Journal of Advanced Computer Science and Applications(IJACSA), Volume 11 Issue 11, 2020.

Abstract: Over 25 million Americans are dependent on med-ical devices. However, the patients who need these devices only have two choices, thus the choice between using an insecure critical-life-functioning devices or the choice to live without the support of a medical device with the consequences of the threats presented by the disease. This study therefore conducted a state-of-the-art on security requirements, concerning medical devices in the US and EU. Food, Drugs and Cosmetic Act, HIPAA, Medical Device Regulations of EU and GDPR were some of the identified regulations for controlling the security of these devices. Statutory laws such as computer Fraud and abuse Act (CFAA), Anti-Tempering Act, Panel Code as well as Battery and Trespass to Chattel in the civil law, were also identified. In analyzing the security requirements, there are less motivations on criminal charges against cyber criminals in addressing the security issues. Because it is often challenging to identify the culprits in medical device hacks. It is also difficult to hold device manufactures on negligence of duty especially after the device has been approved or if the harm on patient was as a result of a cyber attacker. Suggestions have been provided to improve upon the regulations so that both the regulatory bodies and MDM can improve upon their security conscious care.

Keywords: Information security; medical device; legal require-ment; healthcare; privacy

Prosper K. Yeng, Stephen D. Wulthusen and Bian Yang, “Legal Requirements towards Enhancing the Security of Medical Devices” International Journal of Advanced Computer Science and Applications(IJACSA), 11(11), 2020. http://dx.doi.org/10.14569/IJACSA.2020.0111181

@article{Yeng2020,
title = {Legal Requirements towards Enhancing the Security of Medical Devices},
journal = {International Journal of Advanced Computer Science and Applications},
doi = {10.14569/IJACSA.2020.0111181},
url = {http://dx.doi.org/10.14569/IJACSA.2020.0111181},
year = {2020},
publisher = {The Science and Information Organization},
volume = {11},
number = {11},
author = {Prosper K. Yeng and Stephen D. Wulthusen and Bian Yang}
}

IJACSA

Upcoming Conferences

IntelliSys 2021

2-3 September 2021

Future Technologies Conference (FTC) 2021

28-29 October 2021

Future of Information and Communication Conference (FICC) 2022

3-4 March 2022

Computing Conference 2022

14-15 July 2022