SciTransfer
CYMEDSEC · Project

Cybersecurity Standards and Risk Tools for Connected Medical Devices and Diagnostics

healthTestedTRL 5

Imagine your heart monitor or insulin pump is like a smartphone that can be hacked. This project builds a digital security shield and a set of clear rules to stop bad actors from interfering with these devices. It's like creating a universal safety manual and a high-tech lock for all medical gadgets used at home or in hospitals.

By the numbers
12
Total deliverables
33%
Industry ratio in consortium
8
Countries involved
The business problem

What needed solving

Medical device manufacturers struggle to meet evolving cybersecurity regulations, and existing guidelines are too vague to ensure devices are safe from hacks in home-care settings.

The solution

What was built

A cybersecurity benefit-risk analysis toolbox, secure gateway middleware for 5G/cloud, and a 'fleet' management review system for networked devices.

Audience

Who needs this

Medical device manufacturersIVD equipment producersRemote patient monitoring companiesHealthcare cybersecurity auditors
Business applications

Who can put this to work

Medical Device Manufacturing
any
Target: IoMT device developer

If you are a device developer dealing with outdated security guidelines like MDCG 2019-16 — this project developed a cybersecurity benefit-risk analysis toolbox that helps you prove your device is safe for regulators.

Healthcare IT
mid-size
Target: Remote patient monitoring provider

If you are a provider dealing with insecure data transmission in home care — this project developed secure gateway middleware for 5G and cloud computing that protects patient data from attacks.

In Vitro Diagnostics
enterprise
Target: IVD equipment manufacturer

If you are a manufacturer dealing with the struggle to keep pace with digital innovation — this project developed a new IoMT cybersecurity standard to streamline your path to market approval.

Frequently asked

Quick answers

What is the cost or price for using these tools?

Based on available project data, the tools are being developed as Open-Source resources for manufacturers and regulatory bodies, suggesting no direct licensing cost for the toolbox.

Can this be scaled to an industrial level?

Yes, the project validates solutions in complex infrastructures like 5G and cloud computing and includes a 'fleet' management review for large-scale device oversight.

What is the IP and licensing status?

The project follows an Open Science approach, providing open-source tools and FAIR datasets to the public.

How does this help with EU medical regulations?

It provides a cybersecurity-focused benefit-risk analysis toolbox and contributes to a CEN Workshop Agreement to update regulatory guidance.

What is the implementation timeline?

The project runs from 2023-11-01 to 2027-10-31, with early results already including regulatory gap analyses and attack models.

Consortium

Who built it

The consortium is well-balanced for commercial translation, featuring 12 partners across 8 countries. With a 33% industry ratio (4 companies, including 2 SMEs), there is a strong link between academic research from 2 universities and 3 research centers and actual market needs, ensuring the tools are practical for the EU digital health industry.

How to reach the team

Contact Technische Universität Dresden regarding the IoMT cybersecurity toolbox.

Next steps

Talk to the team behind this work.

Contact us to find the open-source cybersecurity toolbox for your medical device pipeline.

More in Health & Biomedical
See all Health & Biomedical projects