Overview
Explore the critical state of healthcare cyber safety in this 57-minute conference talk from BSidesLV 2016. Delve into key topics including the debunked patching myth, coordinated disclosure programs, and the Hippocratic Oath for connected medical devices. Gain insights from multiple perspectives, including U.S. regulators, medical device manufacturers, security researchers, and physicians. Learn about FDA postmarket guidance, vulnerability disclosure policies, and the importance of software bills of materials in the healthcare industry. Understand the evolving landscape of cybersecurity challenges and solutions in modern healthcare systems.
Syllabus
Intro
Patching Myth: Still busted
Draeger Coordinated Disclosure Program
Hospira Disclosures
Hippocratic Oath for Connected Medical Devices
FDA Postmarket Guidance and Workshop
Philips Software Bill of Materials
Johnson & Johnson Vulnerability Disclosure Policy
Cyber Safety Perspectives
U.S. Regulator Perspective
FDA Healthcare Cybersecurity Workshop
Medical Device Maker Perspective
Security Researcher Perspective
Physician Perspective
Taught by
BSidesLV