They can hear your heartbeats: non-invasive security for implantable medical devices

Proceedings of the ACM SIGCOMM 2011 conference Pub Date : 2011-08-15 DOI:10.1145/2018436.2018438

Shyamnath Gollakota, Haitham Hassanieh, Benjamin Ransford, D. Katabi, Kevin Fu

{"title":"They can hear your heartbeats: non-invasive security for implantable medical devices","authors":"Shyamnath Gollakota, Haitham Hassanieh, Benjamin Ransford, D. Katabi, Kevin Fu","doi":"10.1145/2018436.2018438","DOIUrl":null,"url":null,"abstract":"Wireless communication has become an intrinsic part of modern implantable medical devices (IMDs). Recent work, however, has demonstrated that wireless connectivity can be exploited to compromise the confidentiality of IMDs' transmitted data or to send unauthorized commands to IMDs---even commands that cause the device to deliver an electric shock to the patient. The key challenge in addressing these attacks stems from the difficulty of modifying or replacing already-implanted IMDs. Thus, in this paper, we explore the feasibility of protecting an implantable device from such attacks without modifying the device itself. We present a physical-layer solution that delegates the security of an IMD to a personal base station called the shield. The shield uses a novel radio design that can act as a jammer-cum-receiver. This design allows it to jam the IMD's messages, preventing others from decoding them while being able to decode them itself. It also allows the shield to jam unauthorized commands---even those that try to alter the shield's own transmissions. We implement our design in a software radio and evaluate it with commercial IMDs. We find that it effectively provides confidentiality for private data and protects the IMD from unauthorized commands.","PeriodicalId":350796,"journal":{"name":"Proceedings of the ACM SIGCOMM 2011 conference","volume":"386 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2011-08-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"394","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the ACM SIGCOMM 2011 conference","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2018436.2018438","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 394

Abstract

Wireless communication has become an intrinsic part of modern implantable medical devices (IMDs). Recent work, however, has demonstrated that wireless connectivity can be exploited to compromise the confidentiality of IMDs' transmitted data or to send unauthorized commands to IMDs---even commands that cause the device to deliver an electric shock to the patient. The key challenge in addressing these attacks stems from the difficulty of modifying or replacing already-implanted IMDs. Thus, in this paper, we explore the feasibility of protecting an implantable device from such attacks without modifying the device itself. We present a physical-layer solution that delegates the security of an IMD to a personal base station called the shield. The shield uses a novel radio design that can act as a jammer-cum-receiver. This design allows it to jam the IMD's messages, preventing others from decoding them while being able to decode them itself. It also allows the shield to jam unauthorized commands---even those that try to alter the shield's own transmissions. We implement our design in a software radio and evaluate it with commercial IMDs. We find that it effectively provides confidentiality for private data and protects the IMD from unauthorized commands.

查看原文本刊更多论文

他们可以听到你的心跳:植入式医疗设备的非侵入性安全

无线通信已成为现代植入式医疗设备的重要组成部分。然而，最近的研究表明，无线连接可以被利用来破坏imd传输数据的机密性，或者向imd发送未经授权的命令——甚至是导致设备对患者电击的命令。解决这些攻击的关键挑战在于难以修改或更换已经植入的imd。因此，在本文中，我们探讨了在不修改设备本身的情况下保护植入式设备免受此类攻击的可行性。我们提出了一种物理层解决方案，将IMD的安全性委托给一个称为屏蔽的个人基站。该护盾采用了一种新颖的无线电设计，可以作为干扰器和接收器。这种设计允许它干扰IMD的信息，阻止其他人解码，同时自己能够解码。它还允许防护罩干扰未经授权的命令——甚至那些试图改变防护罩自身传输的命令。我们在软件无线电中实现了我们的设计，并用商用imd对其进行了评估。我们发现它有效地为私人数据提供了保密性，并保护IMD免受未经授权的命令。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the ACM SIGCOMM 2011 conference

自引率

0.00%

发文量