Risk Assessment Framework of mHealth System Vulnerabilities: A Multilayer Analysis of the Patient Hub
Open Access
- 1 January 2020
- journal article
- research article
- Published by Scientific Research Publishing, Inc. in Communications and Network
- Vol. 12 (02), 41-60
- https://doi.org/10.4236/cn.2020.122003
Abstract
Although there have been remarkable technological developments in healthcare, the privacy and security of mobile health systems (mHealth) still raise many concerns with considerable consequences for patients using these technologies. For instance, potential security and privacy threats in wireless devices, such as Wi-Fi and Bluetooth connected to a patient hub at the application, middleware and sensory layers, may result in the disclosure of private and sensitive data. This paper explores the security and privacy of the patient hub, including patient applications and their connections to sensors and cloud technology. Addressing the privacy and security concerns of the patient hub called for a comprehensive risk assessment by using the OCTAVE risk assessment framework. Findings reveal that the highest risk concerned data exposure at the sensory layer. In spite of the countermeasures presented in this paper, most served as a means to identify risk early as opposed to mitigating them. The findings can serve to inform users of the potential vulnerabilities in the patient hub before they arise.Keywords
This publication has 25 references indexed in Scilit:
- Mobile health: the power of wearables, sensors, and apps to transform clinical trialsAnnals of the New York Academy of Sciences, 2016
- Security of mobile health (mHealth) systemsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2015
- A formal qualitative risk management approach for IT securityPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2015
- Securing 4G/5G wireless networksComputer Fraud & Security, 2015
- Virtual network security: threats, countermeasures, and challengesJournal of Internet Services and Applications, 2015
- Design of a RESTful Middleware to Enable Web of Medical ThingsPublished by European Alliance for Innovation n.o. ,2014
- RFID Authentication Protocol to Enhance Patient Medication SafetyJournal of Medical Systems, 2013
- Information Security Risk Assessment: Data AnalysisPublished by Elsevier BV ,2012
- The Internet of Things: A surveyComputer Networks, 2010
- An Overview of Privacy and Security Issues in the Internet of ThingsPublished by Springer Science and Business Media LLC ,2010