The healthcare sector has undergone dramatic changes in the past several years, primarily spurred by the adoption of new medical technology including IoT, Cloud Computing, and Big Data. The increasing interconnection of technology in healthcare between devices at the physical and cyber levels has transformed these infrastructures into large Health Care Information Infrastructures (HCIIs), which are considered critical and sensitive due to their importance for people’s well-being and safety. On the other hand, the evolving digital interconnectivity of medical devices has also changed the threat landscape, as the digitalization of patient data is attracting more attention from cybercriminals, producing a wide range of security and privacy challenges and increasing the danger of potential cybersecurity attacks in HCIIs. The integrated nature introduces new potential entry points for propagating cyber-attacks and risks. In addition, health critical infrastructures have cyber-physical aspects, with medical equipment, such as x-ray machines, which malicious actors might control remotely, causing patient harm. Hospitals, health plans, research labs handle unique and valuable assets that are more and more exposed to cyber threats. Personal health information (PHI) and (EHRs) constitute another very sensitive asset, only found in health care infrastructures, due to the sensitivity of information included.
The overall objective of the AI4HEALTHSEC project is to enhance the security and resilience of the modern digital healthcare ecosystems and the provided medical supply chain services through the provision of a novel Dynamic Situational Awareness Framework (DSAF). DSAF will support, on design level, the HCIIs and the other stakeholders comprising the Health Care ecosystem to recognize, identify, model, and dynamically analyse cyber risks. It will support forecasting, treatment and response to advanced persistent threats and handle daily cyber-security and privacy risks, incidents and data breaches and will establish new scientific foundation in assessing and reducing security risks and incidents, cascading effects of threats, and propagated vulnerabilities, addressing the complexity of underlying interconnected healthcare infrastructures, entities, supply chain services, applications and cyber assets.