Published July 22, 2019 | Version v1

Security Assessment as a Service Cross-Layered System for the Adoption of Digital, Personalised and Trusted Healthcare

  • 1. Technological Educational Institute of Crete
  • 2. EDGENEERING Ltd. Lisbon, Portugal

Description

The healthcare sector is exploring the incorporation of digital solutions in order to improve access, reduce costs, increase quality and enhance their capacity in reaching a higher number of citizens. However, this opens healthcare organisations' systems to external elements used within or beyond their premises, new risks and vulnerabilities in what regards cyber threats and incidents. We propose the creation of a Security Assessment as a Service (SAaaS) crosslayered system that is able to identify vulnerabilities and proactively assess and mitigate threats in an IT healthcare ecosystem exposed to external devices and interfaces, considering that most users are not experts (even technologically illiterate") in cyber security and, thus, unaware of security tactics or policies whatsoever. The SAaaS can be integrated in an IT healthcare environment allowing the monitoring of existing and new devices, the limitation of connectivity and privileges to new devices, assess a device's cybersecurity risk and - based on the device's behaviour - the assignment and revoking of privileges. The SAaaS brings a controlled cyber aware environment that assures security, confidentiality and trust, even in the presence of non-trusted devices and environments.

Files

markakis2019.pdf

Files (705.5 kB)

Name Size Download all
md5:e4ef436dfd1aa61d755b23fd70a85a45
705.5 kB Preview Download

Additional details

Funding

European Commission
SPHINX - A Universal Cyber Security Toolkit for Health-Care Industry 826183