(NIST: Gaitherburg, MD) -- Medical devices such as the infusion pumps that deliver medication intravenously were once standalone instruments that interacted only with the patient. Today, they have operating systems and communications hardware that allow them to connect to other devices and networks. While this technology has created more powerful tools and the potential for improved patient care, it also creates new safety and security risks.

The National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) is developing example cybersecurity solutions that demonstrate how to protect wireless infusion pumps from unintended errors or unauthorized access, including malicious acts.

A recently released white paper reviews the challenges and potential solution requirements to better secure the pumps on an enterprise network. It updates a December 2014 draft developed with input from healthcare organizations and providers. The new draft incorporates feedback collected during a public comment period.

 …