Medical Devices Security

On a technical level, a medical device is not different from any connected device in what comes to cyber security threats. What is important to note are the domain specific requirements to ensure safety of the patient and the medical device operators. This means, that any mitigation of a cyber security risk needs to be verified with regard to safety. A life supporting device cannot be shut down even if it has been hacked; neither can the device access control prevent the hospital personnel from acting in the case of an emergency.

Understanding the special needs of the medical domain combined with expert level knowledge on both cyber security and functional safety allows Huld to consult our customers with a holistic view on how to make medical devices cyber-safe without compromising their safety and usability.

What we are good at:

• Compliance of legislation and standards (ISO 13485, ISO 14791, IEC 62443, ISO 27001, ISO 27005)
• Safety & Security management and development
• Secure hardware and software development
• Secure architecture
• Secure cloud architecture
• Security testing