TY  - JOUR
A1  - Siddiqi, Muhammad Ali
A1  - Dörr, Christian
A1  - Strydis, Christos
T1  - IMDfence
BT  - architecting a secure protocol for implantable medical devices
JF  - IEEE access
N2  - Over the past decade, focus on the security and privacy aspects of implantable medical devices (IMDs) has intensified, driven by the multitude of cybersecurity vulnerabilities found in various existing devices. However, due to their strict computational, energy and physical constraints, conventional security protocols are not directly applicable to IMDs. Custom-tailored schemes have been proposed instead which, however, fail to cover the full spectrum of security features that modern IMDs and their ecosystems so critically require. In this paper we propose IMDfence, a security protocol for IMD ecosystems that provides a comprehensive yet practical security portfolio, which includes availability, non-repudiation, access control, entity authentication, remote monitoring and system scalability. The protocol also allows emergency access that results in the graceful degradation of offered services without compromising security and patient safety. The performance of the security protocol as well as its feasibility and impact on modern IMDs are extensively analyzed and evaluated. We find that IMDfence achieves the above security requirements at a mere less than 7% increase in total IMD energy consumption, and less than 14 ms and 9 kB increase in system delay and memory footprint, respectively.
KW  - protocols
KW  - implants
KW  - authentication
KW  - ecosystems
KW  - remote monitoring
KW  - scalability
KW  - authentication protocol
KW  - battery-depletion attack
KW  - battery
KW  - DoS
KW  - denial-of-service attack
KW  - IMD
KW  - implantable medical device
KW  - non-repudiation
KW  - smart card
KW  - zero-power defense
Y1  - 2020
U6  - https://doi.org/10.1109/ACCESS.2020.3015686
SN  - 2169-3536
VL  - 8
SP  - 147948
EP  - 147964
PB  - Institute of Electrical and Electronics Engineers
CY  - Piscataway
ER  -