Cyber physical security solutions for pervasive health monitoring systems

Krishna K. Venkatasubramanian, Sidharth Nabar, Sandeep Gupta, Radha Poovendran

Research output: Chapter in Book/Report/Conference proceedingChapter

7 Citations (Scopus)

Abstract

With a rapidly aging population, the healthcare community will soon face severe medical personnel shortage and rising costs. Pervasive Health Monitoring Systems (PHMS) can help alleviate this situation. PHMS provides continuous real-time monitoring of a person's health using a (usually wireless) network of medical and ambient sensors/devices on the host (patients), called Body Area Networks (BANs). The sensitive nature of health information collected by PHMS mandates that patient's privacy be protected by securing the medical data from any unauthorized access. The authors' approach for addressing these issues focuses on a key observation that PHMS are cyber-physical systems (CPS). Cyber-physical systems are networked, computational platforms, deeply embedded in specific physical processes for monitoring and actuation purposes. In this work, they therefore present a novel perspective on securing PHMS, called Cyber Physical Security (CYPSec) solutions. CYPSec solutions are environmentally-coupled security solutions, which operate by combining traditional security primitives along with environmental features. Its use results in not only secure operation of a system but also the emergence of additional "allied" properties which enhance its overall capabilities. The principal focus of this chapter is the development of a new security approach for PHMS called CYPsec that leverages their cyber-physical nature. The authors illustrate the design issues and principals of CYPSec through two specific examples of this generic approach: (a) Physiological Signal based key Agreement (PSKA) is designed to enable automated key agreement between sensors in the BAN based on physiological signals from the body; and (b) Criticality Aware Access Control (CAAC) which has the ability to provide controlled opening of the system for emergency management. Further, they also discuss aspects such as altered threat-model, increased complexity, non-determinism, and mixed critical systems, that must be addressed to make CYPSec a reality.

Original languageEnglish (US)
Title of host publicationUser-Driven Healthcare: Concepts, Methodologies, Tools, and Applications
PublisherIGI Global
Pages447-465
Number of pages19
Volume1
ISBN (Print)9781466627710, 1466627700, 9781466627703
DOIs
StatePublished - Jan 31 2013

Fingerprint

Computer Security
Health
Physical Phenomena
Privacy
Emergencies
Observation
Delivery of Health Care
Costs and Cost Analysis
Equipment and Supplies

ASJC Scopus subject areas

  • Medicine(all)
  • Health Professions(all)

Cite this

Venkatasubramanian, K. K., Nabar, S., Gupta, S., & Poovendran, R. (2013). Cyber physical security solutions for pervasive health monitoring systems. In User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications (Vol. 1, pp. 447-465). IGI Global. https://doi.org/10.4018/978-1-4666-2770-3.ch022

Cyber physical security solutions for pervasive health monitoring systems. / Venkatasubramanian, Krishna K.; Nabar, Sidharth; Gupta, Sandeep; Poovendran, Radha.

User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications. Vol. 1 IGI Global, 2013. p. 447-465.

Research output: Chapter in Book/Report/Conference proceedingChapter

Venkatasubramanian, KK, Nabar, S, Gupta, S & Poovendran, R 2013, Cyber physical security solutions for pervasive health monitoring systems. in User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications. vol. 1, IGI Global, pp. 447-465. https://doi.org/10.4018/978-1-4666-2770-3.ch022
Venkatasubramanian KK, Nabar S, Gupta S, Poovendran R. Cyber physical security solutions for pervasive health monitoring systems. In User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications. Vol. 1. IGI Global. 2013. p. 447-465 https://doi.org/10.4018/978-1-4666-2770-3.ch022
Venkatasubramanian, Krishna K. ; Nabar, Sidharth ; Gupta, Sandeep ; Poovendran, Radha. / Cyber physical security solutions for pervasive health monitoring systems. User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications. Vol. 1 IGI Global, 2013. pp. 447-465
@inbook{40d81b1809ff4b9f9aa05ac248b786f1,
title = "Cyber physical security solutions for pervasive health monitoring systems",
abstract = "With a rapidly aging population, the healthcare community will soon face severe medical personnel shortage and rising costs. Pervasive Health Monitoring Systems (PHMS) can help alleviate this situation. PHMS provides continuous real-time monitoring of a person's health using a (usually wireless) network of medical and ambient sensors/devices on the host (patients), called Body Area Networks (BANs). The sensitive nature of health information collected by PHMS mandates that patient's privacy be protected by securing the medical data from any unauthorized access. The authors' approach for addressing these issues focuses on a key observation that PHMS are cyber-physical systems (CPS). Cyber-physical systems are networked, computational platforms, deeply embedded in specific physical processes for monitoring and actuation purposes. In this work, they therefore present a novel perspective on securing PHMS, called Cyber Physical Security (CYPSec) solutions. CYPSec solutions are environmentally-coupled security solutions, which operate by combining traditional security primitives along with environmental features. Its use results in not only secure operation of a system but also the emergence of additional {"}allied{"} properties which enhance its overall capabilities. The principal focus of this chapter is the development of a new security approach for PHMS called CYPsec that leverages their cyber-physical nature. The authors illustrate the design issues and principals of CYPSec through two specific examples of this generic approach: (a) Physiological Signal based key Agreement (PSKA) is designed to enable automated key agreement between sensors in the BAN based on physiological signals from the body; and (b) Criticality Aware Access Control (CAAC) which has the ability to provide controlled opening of the system for emergency management. Further, they also discuss aspects such as altered threat-model, increased complexity, non-determinism, and mixed critical systems, that must be addressed to make CYPSec a reality.",
author = "Venkatasubramanian, {Krishna K.} and Sidharth Nabar and Sandeep Gupta and Radha Poovendran",
year = "2013",
month = "1",
day = "31",
doi = "10.4018/978-1-4666-2770-3.ch022",
language = "English (US)",
isbn = "9781466627710",
volume = "1",
pages = "447--465",
booktitle = "User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications",
publisher = "IGI Global",

}

TY - CHAP

T1 - Cyber physical security solutions for pervasive health monitoring systems

AU - Venkatasubramanian, Krishna K.

AU - Nabar, Sidharth

AU - Gupta, Sandeep

AU - Poovendran, Radha

PY - 2013/1/31

Y1 - 2013/1/31

N2 - With a rapidly aging population, the healthcare community will soon face severe medical personnel shortage and rising costs. Pervasive Health Monitoring Systems (PHMS) can help alleviate this situation. PHMS provides continuous real-time monitoring of a person's health using a (usually wireless) network of medical and ambient sensors/devices on the host (patients), called Body Area Networks (BANs). The sensitive nature of health information collected by PHMS mandates that patient's privacy be protected by securing the medical data from any unauthorized access. The authors' approach for addressing these issues focuses on a key observation that PHMS are cyber-physical systems (CPS). Cyber-physical systems are networked, computational platforms, deeply embedded in specific physical processes for monitoring and actuation purposes. In this work, they therefore present a novel perspective on securing PHMS, called Cyber Physical Security (CYPSec) solutions. CYPSec solutions are environmentally-coupled security solutions, which operate by combining traditional security primitives along with environmental features. Its use results in not only secure operation of a system but also the emergence of additional "allied" properties which enhance its overall capabilities. The principal focus of this chapter is the development of a new security approach for PHMS called CYPsec that leverages their cyber-physical nature. The authors illustrate the design issues and principals of CYPSec through two specific examples of this generic approach: (a) Physiological Signal based key Agreement (PSKA) is designed to enable automated key agreement between sensors in the BAN based on physiological signals from the body; and (b) Criticality Aware Access Control (CAAC) which has the ability to provide controlled opening of the system for emergency management. Further, they also discuss aspects such as altered threat-model, increased complexity, non-determinism, and mixed critical systems, that must be addressed to make CYPSec a reality.

AB - With a rapidly aging population, the healthcare community will soon face severe medical personnel shortage and rising costs. Pervasive Health Monitoring Systems (PHMS) can help alleviate this situation. PHMS provides continuous real-time monitoring of a person's health using a (usually wireless) network of medical and ambient sensors/devices on the host (patients), called Body Area Networks (BANs). The sensitive nature of health information collected by PHMS mandates that patient's privacy be protected by securing the medical data from any unauthorized access. The authors' approach for addressing these issues focuses on a key observation that PHMS are cyber-physical systems (CPS). Cyber-physical systems are networked, computational platforms, deeply embedded in specific physical processes for monitoring and actuation purposes. In this work, they therefore present a novel perspective on securing PHMS, called Cyber Physical Security (CYPSec) solutions. CYPSec solutions are environmentally-coupled security solutions, which operate by combining traditional security primitives along with environmental features. Its use results in not only secure operation of a system but also the emergence of additional "allied" properties which enhance its overall capabilities. The principal focus of this chapter is the development of a new security approach for PHMS called CYPsec that leverages their cyber-physical nature. The authors illustrate the design issues and principals of CYPSec through two specific examples of this generic approach: (a) Physiological Signal based key Agreement (PSKA) is designed to enable automated key agreement between sensors in the BAN based on physiological signals from the body; and (b) Criticality Aware Access Control (CAAC) which has the ability to provide controlled opening of the system for emergency management. Further, they also discuss aspects such as altered threat-model, increased complexity, non-determinism, and mixed critical systems, that must be addressed to make CYPSec a reality.

UR - http://www.scopus.com/inward/record.url?scp=84949770412&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84949770412&partnerID=8YFLogxK

U2 - 10.4018/978-1-4666-2770-3.ch022

DO - 10.4018/978-1-4666-2770-3.ch022

M3 - Chapter

AN - SCOPUS:84949770412

SN - 9781466627710

SN - 1466627700

SN - 9781466627703

VL - 1

SP - 447

EP - 465

BT - User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications

PB - IGI Global

ER -