Cargando…
A Comprehensive Study of Security and Cyber-Security Risk Management within e-Health Systems: Synthesis, Analysis and a Novel Quantified Approach
Internet of Things (IoT) applications are among the major trends of nowadays. Billions of connected devices are creating great business profits and performing a multitude of automated tasks in many daily human activities. In healthcare service delivery, IoT capabilities are difficult to overestimate...
| Autores principales: | , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Springer US
2022
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9520106/ http://dx.doi.org/10.1007/s11036-022-02042-1 |
| _version_ | 1784799550218698752 |
|---|---|
| author | Ksibi, Sondes Jaidi, Faouzi Bouhoula, Adel |
| author_facet | Ksibi, Sondes Jaidi, Faouzi Bouhoula, Adel |
| author_sort | Ksibi, Sondes |
| collection | PubMed |
| description | Internet of Things (IoT) applications are among the major trends of nowadays. Billions of connected devices are creating great business profits and performing a multitude of automated tasks in many daily human activities. In healthcare service delivery, IoT capabilities are difficult to overestimate, they are progressively becoming entangled and commonly coined Internet of Medical Things (IoMT). The participating nodes in IoMT networks generate, collect and exchange huge amounts of extremely private and sensitive data. Numerous security vulnerabilities arise due to the complexity and the heterogeneity of the technology. New risks, born out of IoMT systems, cannot easily be supported by existing risk management frameworks. The existing cyber-security risk assessment methods and approaches, deployed in several organizations, will not address the IoMT inherent risks properly. This study includes a comprehensive review of IoMT systems. Popular risk assessment methods are discussed and their suitability to IoMT is dealt with in detail. Based on this study, we propose a framework to enhance trust and help with decision making in e-healthcare environments given its high-risk exposure. The proposal is based on a quantified risk assessment approach. Our aim is to define a novel approach/model for improving trust and risk management in an e-health context. |
| format | Online Article Text |
| id | pubmed-9520106 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2022 |
| publisher | Springer US |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-95201062022-09-29 A Comprehensive Study of Security and Cyber-Security Risk Management within e-Health Systems: Synthesis, Analysis and a Novel Quantified Approach Ksibi, Sondes Jaidi, Faouzi Bouhoula, Adel Mobile Netw Appl Article Internet of Things (IoT) applications are among the major trends of nowadays. Billions of connected devices are creating great business profits and performing a multitude of automated tasks in many daily human activities. In healthcare service delivery, IoT capabilities are difficult to overestimate, they are progressively becoming entangled and commonly coined Internet of Medical Things (IoMT). The participating nodes in IoMT networks generate, collect and exchange huge amounts of extremely private and sensitive data. Numerous security vulnerabilities arise due to the complexity and the heterogeneity of the technology. New risks, born out of IoMT systems, cannot easily be supported by existing risk management frameworks. The existing cyber-security risk assessment methods and approaches, deployed in several organizations, will not address the IoMT inherent risks properly. This study includes a comprehensive review of IoMT systems. Popular risk assessment methods are discussed and their suitability to IoMT is dealt with in detail. Based on this study, we propose a framework to enhance trust and help with decision making in e-healthcare environments given its high-risk exposure. The proposal is based on a quantified risk assessment approach. Our aim is to define a novel approach/model for improving trust and risk management in an e-health context. Springer US 2022-09-29 /pmc/articles/PMC9520106/ http://dx.doi.org/10.1007/s11036-022-02042-1 Text en © The Author(s), under exclusive licence to Springer Science+Business Media, LLC, part of Springer Nature 2022, Springer Nature or its licensor holds exclusive rights to this article under a publishing agreement with the author(s) or other rightsholder(s); author self-archiving of the accepted manuscript version of this article is solely governed by the terms of such publishing agreement and applicable law. This article is made available via the PMC Open Access Subset for unrestricted research re-use and secondary analysis in any form or by any means with acknowledgement of the original source. These permissions are granted for the duration of the World Health Organization (WHO) declaration of COVID-19 as a global pandemic. |
| spellingShingle | Article Ksibi, Sondes Jaidi, Faouzi Bouhoula, Adel A Comprehensive Study of Security and Cyber-Security Risk Management within e-Health Systems: Synthesis, Analysis and a Novel Quantified Approach |
| title | A Comprehensive Study of Security and Cyber-Security Risk Management within e-Health Systems: Synthesis, Analysis and a Novel Quantified Approach |
| title_full | A Comprehensive Study of Security and Cyber-Security Risk Management within e-Health Systems: Synthesis, Analysis and a Novel Quantified Approach |
| title_fullStr | A Comprehensive Study of Security and Cyber-Security Risk Management within e-Health Systems: Synthesis, Analysis and a Novel Quantified Approach |
| title_full_unstemmed | A Comprehensive Study of Security and Cyber-Security Risk Management within e-Health Systems: Synthesis, Analysis and a Novel Quantified Approach |
| title_short | A Comprehensive Study of Security and Cyber-Security Risk Management within e-Health Systems: Synthesis, Analysis and a Novel Quantified Approach |
| title_sort | comprehensive study of security and cyber-security risk management within e-health systems: synthesis, analysis and a novel quantified approach |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9520106/ http://dx.doi.org/10.1007/s11036-022-02042-1 |
| work_keys_str_mv | AT ksibisondes acomprehensivestudyofsecurityandcybersecurityriskmanagementwithinehealthsystemssynthesisanalysisandanovelquantifiedapproach AT jaidifaouzi acomprehensivestudyofsecurityandcybersecurityriskmanagementwithinehealthsystemssynthesisanalysisandanovelquantifiedapproach AT bouhoulaadel acomprehensivestudyofsecurityandcybersecurityriskmanagementwithinehealthsystemssynthesisanalysisandanovelquantifiedapproach AT ksibisondes comprehensivestudyofsecurityandcybersecurityriskmanagementwithinehealthsystemssynthesisanalysisandanovelquantifiedapproach AT jaidifaouzi comprehensivestudyofsecurityandcybersecurityriskmanagementwithinehealthsystemssynthesisanalysisandanovelquantifiedapproach AT bouhoulaadel comprehensivestudyofsecurityandcybersecurityriskmanagementwithinehealthsystemssynthesisanalysisandanovelquantifiedapproach |