Cargando…
Cybersecurity of medical devices: new challenges arising from the AI Act and NIS 2 Directive proposals
Cyberattacks on the IT infrastructure of hospitals, electronic health records or medical devices that have taken place during the COVID-19 pandemic reaffirmed how crucial it is to ensure cybersecurity in the healthcare sector. Medical devices are regulated in the European Union (EU) through vertical...
| Autores principales: | , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Springer Fachmedien Wiesbaden
2022
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9108685/ https://www.ncbi.nlm.nih.gov/pubmed/37521510 http://dx.doi.org/10.1365/s43439-022-00054-x |
| _version_ | 1784708756946288640 |
|---|---|
| author | Biasin, Elisabetta Kamenjašević, Erik |
| author_facet | Biasin, Elisabetta Kamenjašević, Erik |
| author_sort | Biasin, Elisabetta |
| collection | PubMed |
| description | Cyberattacks on the IT infrastructure of hospitals, electronic health records or medical devices that have taken place during the COVID-19 pandemic reaffirmed how crucial it is to ensure cybersecurity in the healthcare sector. Medical devices are regulated in the European Union (EU) through vertical product-specific legislation, such as the Medical Device Regulation (MDR), among others. The MDR foresees safety requirements implying cybersecurity obligations for medical device manufacturers. In 2021, the EU legislator put forward the Network and Information Security System Directive reform (NIS 2) and the Artificial Intelligence Act (AIA) proposal, containing additional cybersecurity requirements applicable to medical devices. This article analyses how the new reforms interact with the existing legislation from a cybersecurity perspective. The research finds that parallel provision of analogous cybersecurity requirements (especially on notification requirements) could lead to regulatory overlapping, fragmentation, and uneven levels of protection of individuals in the EU internal market. In the “Recommendations and conclusions”, the article provides policy recommendations to the EU legislator to help mitigate these risks. |
| format | Online Article Text |
| id | pubmed-9108685 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2022 |
| publisher | Springer Fachmedien Wiesbaden |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-91086852022-05-16 Cybersecurity of medical devices: new challenges arising from the AI Act and NIS 2 Directive proposals Biasin, Elisabetta Kamenjašević, Erik Int. Cybersecur. Law Rev. Article Cyberattacks on the IT infrastructure of hospitals, electronic health records or medical devices that have taken place during the COVID-19 pandemic reaffirmed how crucial it is to ensure cybersecurity in the healthcare sector. Medical devices are regulated in the European Union (EU) through vertical product-specific legislation, such as the Medical Device Regulation (MDR), among others. The MDR foresees safety requirements implying cybersecurity obligations for medical device manufacturers. In 2021, the EU legislator put forward the Network and Information Security System Directive reform (NIS 2) and the Artificial Intelligence Act (AIA) proposal, containing additional cybersecurity requirements applicable to medical devices. This article analyses how the new reforms interact with the existing legislation from a cybersecurity perspective. The research finds that parallel provision of analogous cybersecurity requirements (especially on notification requirements) could lead to regulatory overlapping, fragmentation, and uneven levels of protection of individuals in the EU internal market. In the “Recommendations and conclusions”, the article provides policy recommendations to the EU legislator to help mitigate these risks. Springer Fachmedien Wiesbaden 2022-05-16 2022 /pmc/articles/PMC9108685/ /pubmed/37521510 http://dx.doi.org/10.1365/s43439-022-00054-x Text en © The Author(s), under exclusive licence to Springer Fachmedien Wiesbaden GmbH 2022 This article is made available via the PMC Open Access Subset for unrestricted research re-use and secondary analysis in any form or by any means with acknowledgement of the original source. These permissions are granted for the duration of the World Health Organization (WHO) declaration of COVID-19 as a global pandemic. |
| spellingShingle | Article Biasin, Elisabetta Kamenjašević, Erik Cybersecurity of medical devices: new challenges arising from the AI Act and NIS 2 Directive proposals |
| title | Cybersecurity of medical devices: new challenges arising from the AI Act and NIS 2 Directive proposals |
| title_full | Cybersecurity of medical devices: new challenges arising from the AI Act and NIS 2 Directive proposals |
| title_fullStr | Cybersecurity of medical devices: new challenges arising from the AI Act and NIS 2 Directive proposals |
| title_full_unstemmed | Cybersecurity of medical devices: new challenges arising from the AI Act and NIS 2 Directive proposals |
| title_short | Cybersecurity of medical devices: new challenges arising from the AI Act and NIS 2 Directive proposals |
| title_sort | cybersecurity of medical devices: new challenges arising from the ai act and nis 2 directive proposals |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9108685/ https://www.ncbi.nlm.nih.gov/pubmed/37521510 http://dx.doi.org/10.1365/s43439-022-00054-x |
| work_keys_str_mv | AT biasinelisabetta cybersecurityofmedicaldevicesnewchallengesarisingfromtheaiactandnis2directiveproposals AT kamenjasevicerik cybersecurityofmedicaldevicesnewchallengesarisingfromtheaiactandnis2directiveproposals |