NEw MEdical CYbersecurity assessment and design Solutions

Systematisation of Security Risk Knowledge Across Different Domains: A Case Study of Security Implications of Medical Devices (si apre in una nuova finestra)

Autori: Laura Carmichael, Steve Taylor, Samuel Senior, Mike Surridge, Gencer Erdogan, Simeon Tverdal
Pubblicato in: Proceedings of the 11th International Conference on Information Systems Security and Privacy, 2025
Editore: SCITEPRESS - Science and Technology Publications
DOI: 10.5220/0013306100003899

Semi-Automated Threat Vulnerability & Risk Assessment (TVRA) for Medical Devices (si apre in una nuova finestra)

Autori: Nabil Moukafih, Hongsen Zhang, Gregory Epiphaniou, Carsten Maple, Steve Taylor, Laura Carmichael
Pubblicato in: Proceedings of the 17th International Conference on PErvasive Technologies Related to Assistive Environments, 2025
Editore: ACM
DOI: 10.1145/3652037.3663896

Blockchain-based data provenance architecture for IoMT-based healthcare systems (si apre in una nuova finestra)

Autori: Ravishankar Borgaonkar, Andrea Neverdal Skytterholm, Guillaume Bour
Pubblicato in: 3rd Workshop on SecUre aNd Resilient digItal tranSformation of healthcarE (SUNRISE 2025), 2025
Editore: Springer Nature Link
DOI: 10.5281/ZENODO.18609072

Is My Data in Your Retrieval Database? Membership Inference Attacks Against Retrieval Augmented Generation (si apre in una nuova finestra)

Autori: Maya Anderson; Guy Amit; Abigail Goldsteen
Pubblicato in: Proceedings of the 11th International Conference on Information Systems Security and Privacy, 2025
Editore: SciTePress
DOI: 10.48550/ARXIV.2405.20446

Cybersecurity Guidances for Medical Devices: An MDCG and FDA Regulatory Comparison (si apre in una nuova finestra)

Autori: Andrea Neverdal Skytterholm, Christos Androutsos, Adamantios Ntanis, Martin Gilje Jaatun
Pubblicato in: 2025 IEEE International Conference on Smart Computing (SMARTCOMP), 2025
Editore: IEEE
DOI: 10.1109/SMARTCOMP65954.2025.00079

Cyber-Risk Indicators for Connected Medical Devices (si apre in una nuova finestra)

Autori: Simeon Tverdal, Gencer Erdogan, Andrea Neverdal Skytterholm, Samuel M. Senior, Steve Taylor, Laura Carmichael
Pubblicato in: Communications in Computer and Information Science, Cybersecurity, 2025
Editore: Springer Nature Switzerland
DOI: 10.1007/978-3-031-94855-8_19

Navigating cybersecurity compliance: The cyber compass for medical device manufacturers (si apre in una nuova finestra)

Autori: Andrea Neverdal Skytterholm, Adam Ntanis, Karin Bernsmed, Bjørn Magnus Mathisen, Egil Wille, Christos Androutsos, Martin Gilje Jaatun
Pubblicato in: 2025
Editore: Springer Nature Link
DOI: 10.5281/ZENODO.18608956

From Manual to Automated Cyber Risk Assessment: LLM- and RAG-Driven Multi-Agent Threat Modeling with CORAS in Healthcare Case Studies (si apre in una nuova finestra)

Autori: Gencer Erdogan, Morgan Gillette, Simeon Tverdal, Ragnhild Halvorsrud
Pubblicato in: 2025 12th International Conference on Dependable Systems and Their Applications (DSA), 2025
Editore: IEEE
DOI: 10.5281/ZENODO.17579818

Dynamic Cyber Risk Assessment for Connected Medical Devices: the NEMECYS Approach

Autori: Gencer Erdogan, Laura Carmichael, Steve Taylor, Simeon Tverdal and Andrea Neverdal Skytterholm
Pubblicato in: Joint Proceedings of RCIS 2024 Workshops and Research Projects Track, 2024, ISSN 1613-0073
Editore: Springer

Workshop Insights: Navigating Cybersecurity Regulations for Device Manufacturers and Healthcare Operators

Autori: Andrea Skytterholm, Lars Halvdan Flå and Martin Gilje Jaatun
Pubblicato in: Cyber Science 2024 - Proceedings of the International Conference on Cybersecurity, Situational Awareness & Social Media, 2024, ISBN 0000000000000
Editore: Springer Nature

Lessons Learned from a Cybersecurity Risk Assessment of OpenADR in Smart Grid Planning (si apre in una nuova finestra)

Autori: Gencer Erdogan, Aida Omerovic, Eivind Solvang, Andreas Killingberg, Are Kvinnesland, Inge Abrahamsen Avinor
Pubblicato in: 2025 IEEE International Conference on Cyber Security and Resilience (CSR), 2025
Editore: IEEE
DOI: 10.1109/CSR64739.2025.11130051

Knowledge Modelling for Automated Risk Assessment of Cybersecurity and Indirect Patient Harms in Medical Contexts (si apre in una nuova finestra)

Autori: Samuel Senior, Laura Carmichael, Steve Taylor, Mike Surridge, Xavier Vilalta
Pubblicato in: Proceedings of the 11th International Conference on Information Systems Security and Privacy, 2025
Editore: SCITEPRESS - Science and Technology Publications
DOI: 10.5220/0013166900003899

MDCG 2019-16 Guidelines: Case Study-Based Assessment and Path Forward (si apre in una nuova finestra)

Autori: Christos Androutsos, Steve Taylor, Karin Bernsmed, Andrea Neverdal Skytterholm, Gregory Epiphaniou, Nabil Moukafih, Theodoros N. Arvanitis, Sotiris Messinis, Nikos Papadakis, Marco Fruscione, Andrés Castillo, Dusko Milojevic, Dimitrios S. Karas, Nikolaos Fotos, Max Ostermann, Oscar Freyer, Stephen Gilbert, Vasilis Pezoulas, Lambros Athanasiou, George Gkois, Dimitrios I. Fotiadis
Pubblicato in: Communications in Computer and Information Science, Cybersecurity, 2025
Editore: Springer Nature Switzerland
DOI: 10.1007/978-3-031-94855-8_22

Aurora-fuzzware: Bridging the gap to enable practical fuzzing of microcontroller-based IoT devices (si apre in una nuova finestra)

Autori: Noah Holmdin, Ravishankar Borgaonkar, Egil Wille,Martin Gilje Jaatun
Pubblicato in: 3rd Workshop on SecUre aNd Resilient digItal tranSformation of healthcarE (SUNRISE 2025), 2025
Editore: Springer Nature Link
DOI: 10.5281/ZENODO.18608799

Improving Membership Inference Attacks against Classification Models

Autori: Shlomit Shachor, Natalia Razinkov and Abigail Goldsteen
Pubblicato in: Intelligent Decision Technologies. Proceedings of the 16th KES-IDT 2024 Conference, 2024, ISSN 2190-3018
Editore: Springer Verlag

A Way Forward for the MDCG 2019-16 Medical Device Security Guidance (si apre in una nuova finestra)

Autori: Steve Taylor, et.al.
Pubblicato in: PETRA '24: Proceedings of the 17th International Conference on PErvasive Technologies Related to Assistive Environments, 2024, ISBN 9798400717604
Editore: Association for Computing Machinery
DOI: 10.1145/3652037.3663894

NEMECYS: Addressing Challenges to Building Security Into Connected Medical Devices (si apre in una nuova finestra)

Autori: Martin Gilje Jaatun, Steve Taylor, Colin Upstill, Ariel Farkash, Salvador Garcia and Christos Androutsos
Pubblicato in: HCist - International Conference on Health and Social Care Information Systems and Technologies 2023, 2024, ISSN 1877-0509
Editore: Elsevier
DOI: 10.1016/j.procs.2024.06.307

Membership Inference Attacks Against Time-Series Models (si apre in una nuova finestra)

Autori: Noam Koren; Abigail Goldsteen; Guy Amit; Ariel Farkash
Pubblicato in: Proceedings of Machine Learning Research, 2024
Editore: ACML
DOI: 10.48550/ARXIV.2407.02870

Security-by-design challenges for medical device manufacturers (si apre in una nuova finestra)

Autori: Karin Bernsmed and Martin Gilje Jaatun
Pubblicato in: EICC '24: Proceedings of the 2024 European Interdisciplinary Cybersecurity Conference, 2024, ISBN 9798400716515
Editore: Association for Computing Machinery
DOI: 10.1145/3655693.3661297

Fuzzing the ARM Cortex-M: A Survey

Autori: Silje Marie Sørlien, Åse Marie Solnør, Karin Bernsmed and Martin Gilje Jaatun
Pubblicato in: Cyber Science 2024 - Proceedings of the International Conference on Cybersecurity, Situational Awareness & Social Media, 2024, ISBN 0000000000000
Editore: Springer Nature