{"id":1266,"date":"2022-09-20T20:53:33","date_gmt":"2022-09-21T01:53:33","guid":{"rendered":"https:\/\/dda.ndus.edu\/ddreview\/?p=1266"},"modified":"2023-04-18T16:22:18","modified_gmt":"2023-04-18T21:22:18","slug":"security-vulnerability-in-medical-iot-devices","status":"publish","type":"post","link":"https:\/\/dda.ndus.edu\/ddreview\/security-vulnerability-in-medical-iot-devices\/","title":{"rendered":"Security Vulnerability in Medical IoT Devices"},"content":{"rendered":"\n

According to the Palo Alto Networks threat report,[1]<\/sup><\/a>Palo Alto Networks, \u201c2020 Unit 42 IoT Threat Report,\u201d https:\/\/unit42.paloaltonetworks.com\/iot-threat-report-2020\/<\/span><\/a><\/span><\/span> 98 percent of IoT (Internet of Things) device traffic is unencrypted, exposing personal data on hospital networks. In addition, 72 percent of healthcare Virtual Local Area Networks (VLANs) mix IoT and IT assets, allowing malware to spread from computers to vulnerable IoT devices on the same network. These vulnerabilities allow hackers to access network traffic and collect confidential information, then exploit that data for profit on the Dark Web or alter data to cause harm.\u00a0<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Major cyberattacks, aimed at either disrupting or extorting a system, have always targeted significant entities such as power grids, supervisory control and data acquisition (SCADA) system architecture, and healthcare systems. Manufacturing and healthcare systems are so susceptible that they will suffer 74 percent of all attacks by 2025, according to the Palo Alto report. Also, vendors\u2019 and manufacturers\u2019 software can be compromised and allow hackers to access devices, such as an insulin drip.[2]<\/sup><\/a>Joyia, G. J., Liaqat, R. M., Farooq, A., & Rehman, S. (2017). \u201cInternet of medical things (IoMT): Applications, benefits and future challenges in healthcare domain.\u201d J. Commun., 12(4), … Continue reading<\/span><\/span><\/span><\/p>\n\n\n\n

In recent years, ransomware attacks on hospitals have increased, including the famous WannaCry hack aimed at hospital CCTV cameras. Malicious users block authenticated users from access to their files and hold the data hostage until a ransom is paid. Countermeasures are important to protect system files and promote computer hygiene, such as up-to-date antivirus software, data back-up (preferably on an external or offsite drive), disabling unused ports and applying any security patches for the operating system such as Windows.[3]<\/sup><\/a>Zou, Y., Roundy, K., Tamersoy, A., Shintre, S., Roturier, J., & Schaub, F. (2020, April), \u201cExamining the adoption and abandonment of security, privacy, and identity theft protection … Continue reading<\/span><\/span><\/span> Regardless of the attack sources\u2014criminal organizations, nation states or script kiddies\u2014cyberwarfare is tremendously harmful. Exfiltrated patient data can be used for identity theft and other forms of fraud. Stealing confidential patient information contributes significantly to the ongoing rise in identity fraud nationwide.[4]<\/sup><\/a>Humayun, M., Jhanjhi, N. Z., Alsayat, A., & Ponnusamy, V. (2021). \u201cInternet of things and ransomware: Evolution, mitigation and prevention,\u201d Egyptian Informatics Journal, 22(1), 105-117.<\/span><\/span> <\/p>\n\n\n\n

Worse, patient information can be altered\u2014or deleted\u2014regarding treatment and drug names and dosages, with potentially catastrophic results. Patients can suffer severe injury or even die if a hacker gains unauthorized access to monitoring or other medical equipment and outputs false data. Similarly, devices administering medicine, such as infusion and insulin pumps, can be shut off or dosages wrongly increased by hackers. Imagine the potential harm if a hospital\u2019s power, including backup generators, is turned off. Monitoring screens go blank, or cardiac devices are compromised, or access to the blood supply is blocked during major surgery, such as a double transplant.<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

In the graph above, non-secure IoT devices account for about half of reported cyber-exploits in all industries.<\/p>\n\n\n\n

User online practices represent 26 percent of all threats. Half of these concern password issues, followed by phishing and cryptojacking. Malware accounts for a third of threats, shared by worm attacks at 12 percent and almost equally by ransomware, backdoor trojans and botnets at 6, 7 and 8 percent, respectively. The largest proportion of threats involve exploits at 41 percent, with network scans at 14 percent; remote code execution, command injection, buffer overflow and miscellaneous attacks at 5 percent each; SQL injection at 4 percent; and Zero-Day attacks at 3 percent. <\/p>\n\n\n\n

Based on the report, when security measures such as patches, updates, password and asset management policies are continuously implemented, user-level threats would decrease from 26 to 13 percent, malware threats from 33 to 13 percent, and exploits from 41 to 27 percent. <\/p>\n\n\n\n

Cybersecurity in healthcare needs an urgent upgrade, especially since medical devices can be hacked without any indication. Information protection should not become important only after a data breach but throughout the security design that houses both highly secured connections and IoT devices, which are not highly secured connections. When organizations fail to upgrade security due to budget restraints, they might have to pay a hefty ransom to have the malware flushed out of their systems and their data released.<\/p>\n\n\n\n

Vulnerability<\/h1>\n\n\n\n

Ransomware attacks have increased tremendously since their first detection in 1989.[5]<\/sup><\/a>Leo, P., Isik, \u00d6., & Muhly, F. (2022). \u201cThe Ransomware Dilemma,\u201d MIT Sloan Management Review, 63(4), 13-15.<\/span><\/span> The cost of ransomware attacks has skyrocketed from $10 to $210 billion from 2015 to 2021, which illustrates the importance of securing IoT devices.[6]<\/sup><\/a>Keary, J. (2022), \u201cRebuffing Russian Ransomware: How the United States Should Use the Colonial Pipeline and JBS USA Hackings as a Defense Guide for Ransomware,\u201d Seton Hall University Law Library, … Continue reading<\/span><\/span><\/span> Examples of ransomware targets in 2021 include Kaseya, an IT management and security software company, ($70 million in Bitcoin),[7]<\/sup><\/a>Mohurle, S., & Patil, M. (2017), \u201cA brief study of wannacry threat: Ransomware attack 2017,\u201d International Journal of Advanced Research in Computer Science, 8(5), 1938-1940.<\/span><\/span> and JBS USA Holdings, Inc., a food processing company, ($11 million in Bitcoin).[8]<\/sup><\/a>Bunge, J., \u201cJBS Paid $11 Million to Resolve Ransomware Attack,\u201d Wall Street Journal, June 9, 2021.<\/span><\/span><\/p>\n\n\n\n

Both Kaseya and JBS were hacked by REvil, a Russian cybercriminal organization, which attacked more than 360 American targets in 2021. REvil then leveraged Kaseya\u2019s \u201cconnectivity to the larger internet ecosystem to infect more than 1,500 organizations around the world.\u201d[9]<\/sup><\/a>Collier, K., \u201cMajor Russian-speaking ransomware gag behind JBS and Kaseya attacks goes offline,\u201d NBC News, … Continue reading<\/span><\/span><\/span><\/p>\n\n\n\n

Among the major areas where IoT devices are primarily targeted, the healthcare industry leads the way at 41 percent of attacks, as shown in the graph below, because of the ease with which medical devices can be penetrated.[10]<\/sup><\/a>Yaqoob, I., Ahmed, E., ur Rehman, M. H., Ahmed, A. I. A., Al-garadi, M. A., Imran, M., & Guizani, M. (2017), \u201cThe rise of ransomware and emerging security challenges in the Internet of … Continue reading<\/span><\/span><\/span> The tremendous growth of the internet has made device accessibility more prolific. Imaging devices alone account for 51 percent of threats to healthcare organizations. As a result, there have been many high-profile breaches that amplified the need for robust cybersecurity measures to combat ransomware attacks. <\/p>\n\n\n\n

\"\"<\/figure><\/div>\n\n\n\n

Malicious network and Denial of Service (DoS) attacks are the most dangerous. Today\u2019s doctors and nurses must stay connected to various medical devices in real-time since these machines are integral to diagnosis and treatment.[11]<\/sup><\/a>Hassija, V., Chamola, V., Bajpai, B. C., & Zeadally, S. (2021). \u201cSecurity issues in implantable medic al devices: Fact or fiction?\u201d Sustainable Cities and Society, 66, 102552<\/span><\/span> An additional area of concern involves vendors and manufacturers whose software can be compromised, which might allow hackers access to medical devices.[12]<\/sup><\/a>Joyia, G. J., Liaqat, R. M., Farooq, A., & Rehman, S. (2017). \u201cInternet of medical things (IoMT): Applications, benefits and future challenges in healthcare domain.\u201d J. Commun., 12(4), … Continue reading<\/span><\/span><\/span> <\/p>\n\n\n\n

The graphic below shows how hackers can perform various malicious attacks on any system without security improvements or updates.[13]<\/sup><\/a>Chacko, A., & Hayajneh, T. (2018). \u201cSecurity and privacy issues with IoT in healthcare.\u201d EAI Endorsed Transactions on Pervasive Health and Technology, 4(14) … Continue reading<\/span><\/span><\/span> Because the statistics show more than 50 percent probability of exploit success, it is a matter of time before half of the healthcare systems are hacked from outside threats, especially from Zero-Day attacks that, since new, are difficult to detect by intrusion and prevention systems (IDPS).[14]<\/sup><\/a>McGowan, A., Sittig, S., & Andel, T. (2021). \u201cMedical Internet of Things: A Survey of the Current Threat and Vulnerability Landscape.\u201d In Proceedings of the 54th Hawaii International … Continue reading<\/span><\/span><\/span> Fortunately, based on the Palo Alto report, these account for only 3 percent of exploits.<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Prevention<\/h1>\n\n\n\n

It is imperative to focus on security from a defensive perspective before an IoT system falls for ransomware. Security measures to prevent unauthorized access must use a high level of encryption, server backups, access controls, virus scanners, and up-to-date security software and updates. Data security is always a concern regardless of the type of industry in which the data is located.[15]<\/sup><\/a>Somasundaram, R., & Thirugnanam, M. (2021). \u201cReview of security challenges in healthcare internet of things.\u201d Wireless Networks, 27(8), 5503-5509.<\/span><\/span> <\/p>\n\n\n\n

Cybersecurity is a continuous process in which vendors and consumers must work unequivocally in sync. At this point, most healthcare centers appear to provide adequate security, but it\u2019s impossible to verify since many if not most intrusions are never reported, due to the potential negative economic and reputational damage.<\/p>\n\n\n\n

Encryption is critical, along with routine updates and constant research to understand the attack surface and help develop better-secured devices. A robust authentication algorithm will make it harder to access a device maliciously.[16]<\/sup><\/a>Kolokotronis, N., & Shiaeles, S. (Eds.). (2021). Cyber-Security Threats, Actors, and Dynamic Mitigation, CRC Press (2021).<\/span><\/span> The Health Insurance Portability and Accountability Act (HIPAA) is responsible for the federal protection of individual healthcare data, while the National Institute of Standards and Technology (NIST) is the agency that promotes American innovation in technology to provide suitable security measures and guidelines to organizations, but more investment is needed to prevent data leaks and cyberattacks. <\/p>\n\n\n\n

Many organizations choose not to upgrade their whole system by investing in new hardware and software, due to the massive cost and instead patch their systems. This enables breaches and even far more expensive ransomware attacks.[17]<\/sup><\/a>Loukaka, A., & Rahman, S. (2017). \u201cDiscovering new cyber protection approaches from a security professional prospective.\u201d International Journal of Computer Networks & Communications … Continue reading<\/span><\/span><\/span><\/p>\n\n\n\n

Since cyber-threat vectors are growing quickly, constant and rapid countermeasures need to be applied. Healthcare systems are increasingly being targeted because of the typical lack of security overall and because IoT devices are easily accessible. Cybercriminals understand not only how to exploit systems but also how to remain undetected for months after a breach.[18]<\/sup><\/a>Shepherd, A., Kesa, C., & Cooper, J. (2020). \u201cInternet of Things (IOT) Medical Security: Taxonomy and Perception.\u201d Issues in Information Systems, 21(3).<\/span><\/span> Outsider attacks, however, are not as successful as insider attacks.[19]<\/sup><\/a>Chanal, P. M., & Kakkasageri, M. S. (2021). \u201cPreserving Data Confidentiality in Internet of Things.\u201d SN Computer Science, 2(1), 1-12.<\/span><\/span> The configuration of internal systems is vital, therefore, and any error can become costly. Also, disgruntled employees might leave themselves backdoor access to extract or upload a virus to disrupt daily business needs. The security apparatus must be appropriately configured to target such specific threats. Individual health information is federally mandated to be protected, and medical facilities must understand the risk of using IoT devices without proper cybersecurity.[20]<\/sup><\/a>Nadikattu, R. R. (2020). \u201cData Safety and Integrity Issue in IoT.\u201d International Journal for Research in Applied Science & Engineering Technology (IJRASET), 8(VI).<\/span><\/span> [21]<\/sup><\/a>Mishra, B., & Padhy, N. (2021). \u201cEnhancing the security, reliability, and data integrity issues in the internet of things by implementing blockchain strategy in mining: challenges and … Continue reading<\/span><\/span><\/span> [22]<\/sup><\/a>Atlam, H. F., Azad, M. A., Alzahrani, A. G., & Wills, G. (2020). \u201cA Review of Blockchain in Internet of Things and AI.\u201d Big Data and Cognitive Computing, 4(4), 28.<\/span><\/span><\/p>\n\n\n\n

Implementation<\/h1>\n\n\n\n

First, there is an important secure-oriented approach to make sure an IoT system is protected from cyber harm. The following approach is part of continuous computer hygiene that any organization or user can apply that involves changing default passwords, system patching, network segmentation, asset inventory and Bluetooth technology. <\/p>\n\n\n\n

\u2022 Default Passwords<\/h4>\n\n\n\n

Computing hardware typically requires a password to authenticate. When a default password is provided, it needs to be changed by the user. Much stolen data is available on the Dark Web, a collection of internet sites accessible with a specialized browser, where users can buy and exchange stolen data. Good password hygiene must be alpha numeric with at least one special character and an uppercase. Also, the password must be changed every 60 to 90 days to prevent brute force attacks, which hackers use to discover passwords in plain text.<\/p>\n\n\n\n

\u2022 Unpatched Systems<\/h4>\n\n\n\n

As with passwords, unpatched systems are a prime target for hackers and the main reason for the increased ransomware attacks. A patch management policy must automate security updates, as in Microsoft software, so that hardware and software are up to date, especially on critical systems.<\/p>\n\n\n\n

\u2022 Network Segmentation<\/h4>\n\n\n\n

Network segmentation is imperative to limit malicious users from progressing from creating a breach to moving easily within the network and altering or stealing data. IoT devices must be located on a different system segment to be isolated from direct unauthorized access.<\/p>\n\n\n\n

\u2022 Asset Inventory<\/h4>\n\n\n\n

Maintaining an active inventory of network-approved devices can facilitate patch implement when attacked, such that bad actors cannot use authorized or unauthorized devices to deploy malware and learn the system\u2019s configuration or analyze data traffic.<\/p>\n\n\n\n

\u2022 Bluetooth Connection<\/h4>\n\n\n\n

Bluetooth is the go-to method for IoT devices to connect to a network. However, Bluetooth is susceptible to a man-in-the-middle attack in which an attacker gets in between a user and the application\u2014for example, by providing a free but malicious public WIFI hotspot\u2014to eavesdrop or steal or alter the communication or data. Turning off the discoverable option when paired with a device is recommended so no malicious user can detect the connection since it\u2019s invisible. Also, malicious hotspots typically aren\u2019t password protected.<\/p>\n\n\n\n

Second, integrity ensures that the data is not being altered by unauthorized users.[23]<\/sup><\/a>Tang, S., & Xie, Y. (2021). \u201cAvailability Modeling and Performance Improving of a Healthcare Internet of Things (IoT) System.\u201d IoT, 2(2), 310-325.<\/span><\/span> [24]<\/sup><\/a>Singh, R. P., Javaid, M., Haleem, A., & Suman, R. (2020). \u201cInternet of things (IoT) applications to fight against COVID-19 pandemic.\u201d Diabetes & Metabolic Syndrome: Clinical Research … Continue reading<\/span><\/span><\/span> The mechanism also implemented for data confidentiality (protection against unauthorized access) can also benefit data integrity. Since the data cannot be viewed or deciphered, it cannot be altered in any way. It is equally essential to maintain such a system for access controls, data validation, audit trail, and, most importantly, data backup in case of total loss or inaccessibility as with a ransomware attack. <\/p>\n\n\n\n

One proposed solution would be to enhance data security using a blockchain approach.[25]<\/sup><\/a>Stiawan, D., Suryani, M. E., Idris, M. Y., Aldalaien, M. N., Alsharif, N., & Budiarto, R. (2021). \u201cPing Flood Attack Pattern Recognition Using a K- Means algorithm in an Internet of Things … Continue reading<\/span><\/span><\/span> Essentially, blockchain is information recorded in blocks that are highly difficult to breach, modify or access.[26]<\/sup><\/a>Shah, Y., & Sengupta, S. (2020, October). \u201cA survey on Classification of Cyber-attacks on IoT and IIoT devices.\u201d In 2020 11th IEEE Annual Ubiquitous Computing, Electronics & Mobile … Continue reading<\/span><\/span><\/span> This technique is used with transactions of Bitcoins and other cryptocurrencies to protect transactions and their anonymity. Using blockchain with IoT devices would provide robust security and reduce organizational costs in rebuilding the database and exploited network post-attack.<\/p>\n\n\n\n

Last, availability ensures that data can always be accessed flawlessly without interruption.[27]<\/sup><\/a>Fernandez, E. B. (2020). \u201cA pattern for a Secure Cloud-Based IoT Architecture.\u201d In Proceedings of the 27th Conference on Pattern Languages of Programs (PLOP\u201d20). Association for Computing … Continue reading<\/span><\/span><\/span> This is critical to using IoT devices in healthcare, since availability enables uninterrupted, real-time access to patient data for the proper diagnosis and monitoring. Ensuring availability requires investments in reliable data storage systems, secure Wi-Fi, an air-gapped network (which has no interface, wired or wireless, with outside networks) and the latest mobile technology operated properly. Also, critical areas of hospitals must be secured with a keypad access card, security officers and surveillance cameras. <\/p>\n\n\n\n

The budget to implement a more efficient network system, especially if significant upgrading is required, might be expensive and time-consuming\u2014but essential to security. Then once accomplished, the system\u2019s implementation, maintenance and configuration must be constantly improved.<\/p>\n\n\n\n

IoT devices are a growing technology that is becoming ubiquitous. Security concerns need to be addressed immediately to strengthen data integrity and availability.[28]<\/sup><\/a>Best, J. (2020). \u201cCould implanted medical devices be hacked?\u201d BMJ, 368.<\/span><\/span> [29]<\/sup><\/a>Bhuyan, S. S., Kabir, U. Y., Escareno, J. M., Ector, K., Palakodeti, S., Wyant, D., & Dobalian, A. (2020). \u201cTransforming healthcare cybersecurity from reactive to proactive: current status and … Continue reading<\/span><\/span><\/span><\/p>\n\n\n\n

Banks, which protect people\u2019s money, have far better security in place than the healthcare sector, which is required to protect people\u2019s personal information, as well as their health and lives. It\u2019s time for health to pay attention to wealth. <\/p>\n

References<\/span><\/p><\/div>

\r\n\r\n
References<\/caption>
↑<\/span>1<\/a><\/th> Palo Alto Networks, \u201c2020 Unit 42 IoT Threat Report,\u201d https:\/\/unit42.paloaltonetworks.com\/iot-threat-report-2020\/<\/span><\/a><\/td><\/tr>\r\n\r\n
↑<\/span>2<\/a><\/th> Joyia, G. J., Liaqat, R. M., Farooq, A., & Rehman, S. (2017). \u201cInternet of medical things (IoMT): Applications, benefits and future challenges in healthcare domain.\u201d J. Commun., 12(4), 240-247. July 7<\/td><\/tr>\r\n\r\n
↑<\/span>3<\/a><\/th> Zou, Y., Roundy, K., Tamersoy, A., Shintre, S., Roturier, J., & Schaub, F. (2020, April), \u201cExamining the adoption and abandonment of security, privacy, and identity theft protection practices,\u201d Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems, (pp. 1-15).<\/td><\/tr>\r\n\r\n
↑<\/span>4<\/a><\/th> Humayun, M., Jhanjhi, N. Z., Alsayat, A., & Ponnusamy, V. (2021). \u201cInternet of things and ransomware: Evolution, mitigation and prevention,\u201d Egyptian Informatics Journal, 22(1), 105-117.<\/td><\/tr>\r\n\r\n
↑<\/span>5<\/a><\/th> Leo, P., Isik, \u00d6., & Muhly, F. (2022). \u201cThe Ransomware Dilemma,\u201d MIT Sloan Management Review, 63(4), 13-15.<\/td><\/tr>\r\n\r\n
↑<\/span>6<\/a><\/th> Keary, J. (2022), \u201cRebuffing Russian Ransomware: How the United States Should Use the Colonial Pipeline and JBS USA Hackings as a Defense Guide for Ransomware,\u201d Seton Hall University Law Library, 2022.<\/td><\/tr>\r\n\r\n
↑<\/span>7<\/a><\/th> Mohurle, S., & Patil, M. (2017), \u201cA brief study of wannacry threat: Ransomware attack 2017,\u201d International Journal of Advanced Research in Computer Science, 8(5), 1938-1940.<\/td><\/tr>\r\n\r\n
↑<\/span>8<\/a><\/th> Bunge, J., \u201cJBS Paid $11 Million to Resolve Ransomware Attack,\u201d Wall Street Journal, June 9, 2021.<\/td><\/tr>\r\n\r\n
↑<\/span>9<\/a><\/th> Collier, K., \u201cMajor Russian-speaking ransomware gag behind JBS and Kaseya attacks goes offline,\u201d NBC News, https:\/\/www.nbcnews.com\/tech\/tech-news\/russian-speaking-ransomware-gang-goes-offline-rcna1403.<\/span><\/a><\/td><\/tr>\r\n\r\n
↑<\/span>10<\/a><\/th> Yaqoob, I., Ahmed, E., ur Rehman, M. H., Ahmed, A. I. A., Al-garadi, M. A., Imran, M., & Guizani, M. (2017), \u201cThe rise of ransomware and emerging security challenges in the Internet of Things,\u201d Computer Networks, 129, 444-458.<\/td><\/tr>\r\n\r\n
↑<\/span>11<\/a><\/th> Hassija, V., Chamola, V., Bajpai, B. C., & Zeadally, S. (2021). \u201cSecurity issues in implantable medic al devices: Fact or fiction?\u201d Sustainable Cities and Society, 66, 102552<\/td><\/tr>\r\n\r\n
↑<\/span>12<\/a><\/th> Joyia, G. J., Liaqat, R. M., Farooq, A., & Rehman, S. (2017). \u201cInternet of medical things (IoMT): Applications, benefits and future challenges in healthcare domain.\u201d J. Commun., 12(4), 240-247.<\/td><\/tr>\r\n\r\n
↑<\/span>13<\/a><\/th> Chacko, A., & Hayajneh, T. (2018). \u201cSecurity and privacy issues with IoT in healthcare.\u201d EAI Endorsed Transactions on Pervasive Health and Technology, 4(14) doi:http:\/\/dx.doi.org\/10.4108\/eai.13-7-2018.155079.<\/span><\/a><\/td><\/tr>\r\n\r\n
↑<\/span>14<\/a><\/th> McGowan, A., Sittig, S., & Andel, T. (2021). \u201cMedical Internet of Things: A Survey of the Current Threat and Vulnerability Landscape.\u201d In Proceedings of the 54th Hawaii International Conference on System Sciences (p. 3850).<\/td><\/tr>\r\n\r\n
↑<\/span>15<\/a><\/th> Somasundaram, R., & Thirugnanam, M. (2021). \u201cReview of security challenges in healthcare internet of things.\u201d Wireless Networks, 27(8), 5503-5509.<\/td><\/tr>\r\n\r\n
↑<\/span>16<\/a><\/th> Kolokotronis, N., & Shiaeles, S. (Eds.). (2021). Cyber-Security Threats, Actors, and Dynamic Mitigation, CRC Press (2021).<\/td><\/tr>\r\n\r\n
↑<\/span>17<\/a><\/th> Loukaka, A., & Rahman, S. (2017). \u201cDiscovering new cyber protection approaches from a security professional prospective.\u201d International Journal of Computer Networks & Communications (IJCNC) Vol, 9.<\/td><\/tr>\r\n\r\n
↑<\/span>18<\/a><\/th> Shepherd, A., Kesa, C., & Cooper, J. (2020). \u201cInternet of Things (IOT) Medical Security: Taxonomy and Perception.\u201d Issues in Information Systems, 21(3).<\/td><\/tr>\r\n\r\n
↑<\/span>19<\/a><\/th> Chanal, P. M., & Kakkasageri, M. S. (2021). \u201cPreserving Data Confidentiality in Internet of Things.\u201d SN Computer Science, 2(1), 1-12.<\/td><\/tr>\r\n\r\n
↑<\/span>20<\/a><\/th> Nadikattu, R. R. (2020). \u201cData Safety and Integrity Issue in IoT.\u201d International Journal for Research in Applied Science & Engineering Technology (IJRASET), 8(VI).<\/td><\/tr>\r\n\r\n
↑<\/span>21<\/a><\/th> Mishra, B., & Padhy, N. (2021). \u201cEnhancing the security, reliability, and data integrity issues in the internet of things by implementing blockchain strategy in mining: challenges and solutions.\u201d In Communication Software and Networks (pp. 137-144). Springer, Singapore.<\/td><\/tr>\r\n\r\n
↑<\/span>22<\/a><\/th> Atlam, H. F., Azad, M. A., Alzahrani, A. G., & Wills, G. (2020). \u201cA Review of Blockchain in Internet of Things and AI.\u201d Big Data and Cognitive Computing, 4(4), 28.<\/td><\/tr>\r\n\r\n
↑<\/span>23<\/a><\/th> Tang, S., & Xie, Y. (2021). \u201cAvailability Modeling and Performance Improving of a Healthcare Internet of Things (IoT) System.\u201d IoT, 2(2), 310-325.<\/td><\/tr>\r\n\r\n
↑<\/span>24<\/a><\/th> Singh, R. P., Javaid, M., Haleem, A., & Suman, R. (2020). \u201cInternet of things (IoT) applications to fight against COVID-19 pandemic.\u201d Diabetes & Metabolic Syndrome: Clinical Research & Reviews, 14(4), 521-524.<\/td><\/tr>\r\n\r\n
↑<\/span>25<\/a><\/th> Stiawan, D., Suryani, M. E., Idris, M. Y., Aldalaien, M. N., Alsharif, N., & Budiarto, R. (2021). \u201cPing Flood Attack Pattern Recognition Using a K- Means algorithm in an Internet of Things (IoT) Network.\u201d IEEE Access, 9, 116475-116484.<\/td><\/tr>\r\n\r\n
↑<\/span>26<\/a><\/th> Shah, Y., & Sengupta, S. (2020, October). \u201cA survey on Classification of Cyber-attacks on IoT and IIoT devices.\u201d In 2020 11th IEEE Annual Ubiquitous Computing, Electronics & Mobile Communication Conference (UEMCON) (pp. 0406-0413). IEEE.<\/td><\/tr>\r\n\r\n
↑<\/span>27<\/a><\/th> Fernandez, E. B. (2020). \u201cA pattern for a Secure Cloud-Based IoT Architecture.\u201d In Proceedings of the 27th Conference on Pattern Languages of Programs (PLOP\u201d20). Association for Computing Machinery, USA.<\/td><\/tr>\r\n\r\n
↑<\/span>28<\/a><\/th> Best, J. (2020). \u201cCould implanted medical devices be hacked?\u201d BMJ, 368.<\/td><\/tr>\r\n\r\n
↑<\/span>29<\/a><\/th> Bhuyan, S. S., Kabir, U. Y., Escareno, J. M., Ector, K., Palakodeti, S., Wyant, D., & Dobalian, A. (2020). \u201cTransforming healthcare cybersecurity from reactive to proactive: current status and future recommendations.\u201d Journal of Medical Systems, 44(5), 1-9.<\/td><\/tr>\r\n\r\n <\/tbody> <\/table> <\/div><\/div>","protected":false},"excerpt":{"rendered":"

According to the Palo Alto Networks threat report,[1]Palo Alto Networks, \u201c2020 Unit 42 IoT Threat Report,\u201d https:\/\/unit42.paloaltonetworks.com\/iot-threat-report-2020\/ 98 percent of IoT (Internet of Things) device traffic is unencrypted, exposing personal […]<\/p>\n","protected":false},"author":44,"featured_media":1337,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[20,278],"tags":[353,334,354,335,339,338,328,349,259,326,355,350,345,346,336,347,322,324,325,342,341,344,329,348,352,321,356,332,337,343,340,327,351,323,331,333,330],"_links":{"self":[{"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/posts\/1266"}],"collection":[{"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/users\/44"}],"replies":[{"embeddable":true,"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/comments?post=1266"}],"version-history":[{"count":19,"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/posts\/1266\/revisions"}],"predecessor-version":[{"id":1451,"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/posts\/1266\/revisions\/1451"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/media\/1337"}],"wp:attachment":[{"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/media?parent=1266"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/categories?post=1266"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dda.ndus.edu\/ddreview\/wp-json\/wp\/v2\/tags?post=1266"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}