Web-Based Botnet for Blocking Control Flow in Open-Source Medical Syringe Pump.

IF 0.7 Q4 COMPUTER SCIENCE, INFORMATION SYSTEMS

International Journal of Grid and Utility Computing Pub Date : 2025-01-01 Epub Date: 2025-03-24 DOI:10.1504/ijguc.2025.10070119

Wei Lu

{"title":"Web-Based Botnet for Blocking Control Flow in Open-Source Medical Syringe Pump.","authors":"Wei Lu","doi":"10.1504/ijguc.2025.10070119","DOIUrl":null,"url":null,"abstract":"<p><p>Integrating open-source medical systems, with advancements in 3D printing technology and microcomputer systems such as Arduino and Raspberry Pi, has revolutionized the healthcare industry. However, it has also exposed cybersecurity vulnerabilities in hospitals. This paper presents a web-based botnet as a proof-of-concept to demonstrate potential disruptions in the control flow of a syringe pump in an IoT medical network testbed. Our lightweight botnet stands out for its rapid deployment and minimal use of resources. We also provide a publicly available dataset from this botnet for cybersecurity research on open-source medical systems. Additionally, we developed a methodology for feature selection to detect botnet attacks. Our comparative study with various machine learning algorithms revealed the best strategy for detecting these attacks using network traffic data from benign and malicious environments. The results were impressive, with our feature selection technique achieving over 99% accuracy on the testing dataset, successfully identifying 63,380 out of 63,382 attack instances.</p>","PeriodicalId":44878,"journal":{"name":"International Journal of Grid and Utility Computing","volume":"16 2","pages":"162-172"},"PeriodicalIF":0.7000,"publicationDate":"2025-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.ncbi.nlm.nih.gov/pmc/articles/PMC12456968/pdf/","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Grid and Utility Computing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1504/ijguc.2025.10070119","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"2025/3/24 0:00:00","PubModel":"Epub","JCR":"Q4","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Integrating open-source medical systems, with advancements in 3D printing technology and microcomputer systems such as Arduino and Raspberry Pi, has revolutionized the healthcare industry. However, it has also exposed cybersecurity vulnerabilities in hospitals. This paper presents a web-based botnet as a proof-of-concept to demonstrate potential disruptions in the control flow of a syringe pump in an IoT medical network testbed. Our lightweight botnet stands out for its rapid deployment and minimal use of resources. We also provide a publicly available dataset from this botnet for cybersecurity research on open-source medical systems. Additionally, we developed a methodology for feature selection to detect botnet attacks. Our comparative study with various machine learning algorithms revealed the best strategy for detecting these attacks using network traffic data from benign and malicious environments. The results were impressive, with our feature selection technique achieving over 99% accuracy on the testing dataset, successfully identifying 63,380 out of 63,382 attack instances.

查看原文本刊更多论文

基于web的僵尸网络阻断开源医疗注射泵控制流。

将开源医疗系统与先进的3D打印技术以及Arduino和Raspberry Pi等微型计算机系统相结合，已经彻底改变了医疗保健行业。然而，它也暴露了医院的网络安全漏洞。本文提出了一个基于网络的僵尸网络作为概念验证，以演示物联网医疗网络测试平台中注射泵控制流的潜在中断。我们的轻量级僵尸网络以其快速部署和最少的资源使用而脱颖而出。我们还提供了一个来自这个僵尸网络的公开可用数据集，用于开源医疗系统的网络安全研究。此外，我们开发了一种特征选择方法来检测僵尸网络攻击。我们与各种机器学习算法的比较研究揭示了使用来自良性和恶意环境的网络流量数据检测这些攻击的最佳策略。结果令人印象深刻，我们的特征选择技术在测试数据集中实现了99%以上的准确率，成功识别了63382个攻击实例中的63380个。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

International Journal of Grid and Utility Computing COMPUTER SCIENCE, INFORMATION SYSTEMS-

CiteScore

1.30

自引率

0.00%

发文量