If you are a manufacturer dealing with the risk of device hacking or malfunctions—this project developed a Trust Assessment system that provides real-time evidence of a device's integrity. This ensures your products remain safe and compliant throughout their entire life.
Zero-Trust Security System for Connected Medical Devices
Imagine if your medical devices had a digital passport that they had to show every few seconds to prove they haven't been hacked. Instead of just trusting a device because it's plugged in, this system constantly checks its health and behavior. It's like having a security guard that monitors every single action of a machine in real-time to keep patients safe.
What needed solving
Connected medical devices often lack a way to prove they are still secure after they leave the factory. This creates a gap in safety where a device could be compromised during use without the hospital knowing.
What was built
A Trust Assessment system and a remote attestation mechanism. It includes a Digital Twin for secure software updates and real-time Conformity Certificates.
Who needs this
Who can put this to work
If you are a provider dealing with insecure networks where many different medical brands connect—this project developed a way to verify the trust level of every device regardless of its brand. This prevents a single compromised device from endangering the whole hospital network.
If you are a certification body dealing with the lack of post-market surveillance—this project developed real-time Conformity Certificates. This allows you to move from a one-time approval to continuous safety verification.
Quick answers
What is the cost or pricing for implementing this system?
Based on available project data, specific pricing or cost structures are not provided.
Can this be scaled to thousands of devices across different hospitals?
Yes, the project implemented a Digital Twin enabled update system specifically designed to support scalable and hierarchical deployment.
Who owns the IP and how is licensing handled?
Based on available project data, the specific IP and licensing agreements are not detailed.
How does this help with EU medical regulations?
It aligns with the Cybersecurity Act and provides the first-ever real-time Conformity Certificates to safeguard connected devices.
How is this integrated into existing medical hardware?
The system uses a remote attestation mechanism designed to be efficient enough to run on resource-constrained real-time systems.
Who built it
The project is heavily industry-driven with a 67% industry ratio, comprising 14 companies including 9 SMEs. This strong commercial presence, combined with 21 partners across 12 countries, suggests the results are designed for immediate market application rather than just academic study.
Contact UNISYSTEMS LUXEMBOURG SARL for technical integration details.
Talk to the team behind this work.
Contact us to connect with the ENTRUST consortium for licensing and pilot opportunities.