SciTransfer
ENTRUST · Project

Zero-Trust Security System for Connected Medical Devices

healthPilotedTRL 7

Imagine if your medical devices had a digital passport that they had to show every few seconds to prove they haven't been hacked. Instead of just trusting a device because it's plugged in, this system constantly checks its health and behavior. It's like having a security guard that monitors every single action of a machine in real-time to keep patients safe.

By the numbers
21
partners
12
countries involved
67%
industry ratio
The business problem

What needed solving

Connected medical devices often lack a way to prove they are still secure after they leave the factory. This creates a gap in safety where a device could be compromised during use without the hospital knowing.

The solution

What was built

A Trust Assessment system and a remote attestation mechanism. It includes a Digital Twin for secure software updates and real-time Conformity Certificates.

Audience

Who needs this

Medical device manufacturersHospital IT security officersMedical certification agenciesHealthcare software vendors
Business applications

Who can put this to work

Medical Device Manufacturing
enterprise
Target: Connected Device Manufacturer

If you are a manufacturer dealing with the risk of device hacking or malfunctions—this project developed a Trust Assessment system that provides real-time evidence of a device's integrity. This ensures your products remain safe and compliant throughout their entire life.

Healthcare IT
mid-size
Target: Hospital Network Provider

If you are a provider dealing with insecure networks where many different medical brands connect—this project developed a way to verify the trust level of every device regardless of its brand. This prevents a single compromised device from endangering the whole hospital network.

Cybersecurity
any
Target: Medical Certification Body

If you are a certification body dealing with the lack of post-market surveillance—this project developed real-time Conformity Certificates. This allows you to move from a one-time approval to continuous safety verification.

Frequently asked

Quick answers

What is the cost or pricing for implementing this system?

Based on available project data, specific pricing or cost structures are not provided.

Can this be scaled to thousands of devices across different hospitals?

Yes, the project implemented a Digital Twin enabled update system specifically designed to support scalable and hierarchical deployment.

Who owns the IP and how is licensing handled?

Based on available project data, the specific IP and licensing agreements are not detailed.

How does this help with EU medical regulations?

It aligns with the Cybersecurity Act and provides the first-ever real-time Conformity Certificates to safeguard connected devices.

How is this integrated into existing medical hardware?

The system uses a remote attestation mechanism designed to be efficient enough to run on resource-constrained real-time systems.

Consortium

Who built it

The project is heavily industry-driven with a 67% industry ratio, comprising 14 companies including 9 SMEs. This strong commercial presence, combined with 21 partners across 12 countries, suggests the results are designed for immediate market application rather than just academic study.

How to reach the team

Contact UNISYSTEMS LUXEMBOURG SARL for technical integration details.

Next steps

Talk to the team behind this work.

Contact us to connect with the ENTRUST consortium for licensing and pilot opportunities.

More in Health & Biomedical
See all Health & Biomedical projects