a study of cybersecurity framework for healthcare internet

iMedPub Journalswww.imedpub.com

Journal of Hospital & Medical Management2471-9781

2021Vol.7 No.5:273

Research Article

1© Under License of Creative Commons Attribution 3.0 License | This article is available in: http://hospital-medical-management.imedpub.com/archive.php

Shiva Kiran Nallaga1, Vidyavati Ramteke2, Manda Sundeep Kumar3*

1 SymbiosisCentreforInformationTechnology, India

2 Assistant Professor, Symbiosis Centre forInformationTechnologySymbiosisInternational(DeemedUniversity),Pune

3 MvgrCollegeofEngineering,Viziyanagaram, India

*Corresponding author: MandaSundeepKumar

[email protected]

Tel: +7908261005

MvgrCollegeofEngineering,Viziyanagaram,India

Citation:NallagaSK,RamtekeV,KumarMS(2021)AStudyofCybersecurityFrameworkforHealthcareInternetofThingSystems.JHospMedManageVol.7No.5:273.

A Study of Cybersecurity Framework for Healthcare Internet of Thing Systems

AbstractAswithanytechnicalinnovationinculture,manywillstilluseittotheirowngainwhen new opportunities emerge. Current Internet of Things (IoT) applicationshaveparticularprotectionvulnerabilitiesowingprimarilytotheircomplexitiesandvariabilityoftechnologiesanddata.Thiscouldnotincorporatetherisksresultingfrom these IoT networkswithin an established risk structure. And outside thetechnology nomenclature, cyber security is as important to our society as theapplication itself. They cannot really be divided: the innovations on which wedependeverydaytodaydecideoursociety,ournationalsecurityandthereforethenatureofoursociety.Astheyconnectthishealthcaresystemtothenetworkthrough the Internet, the software is susceptible to many cyber threats andsecurityinitiatives.Asecureprotectionframeworkcannotimpedebasicsecurityaspects such as authentication, anonymity, availability, accessibility and non-repudiation.Thispaperdiscussesimprovedconstructivesecurityagainstdynamicand inventive threats against critical health infrastructures. They recommendacomprehensive solution to cyber-attacks through an interconnected system ofknowledgesecurity.Tomodelandtestthismethodbydesigningandcheckingtheadaptivetechniquefordefenseandattack.

Keywords: Cybersecurity, Healthcare, Adaptive security, Machine learning,Internet of Things, Smart home

Received:April17,2021, Accepted:April21,2021,Published:May18,2021

IntroductionCyber-attacks are a today’s fast-increasing problem in all keytechnology industries. Inthehealthsector,cyberattacksareofgreat interest because these attackswill actively endanger notonly the protection of our infrastructure and records but alsoAmericanpatients’ health and safety. In thehealth sector, it isunderconstantcyber-attackandnoorganizationcanavoidthis.WhilecreativityinhealthinformationtechnologycontributestohopeandgrowingmaturityofhealthScience,ourtechnologycanonlyfunctionforusifit’shealthy,anditcanhelptotacklesomeofourmostdifficultconcerns,whether inclinicalcare,medicaltesting, public health or health system growth. Informationtechnologies are critical for the healthcare system now andfuture, and so we ought to undertake every workable actionto secure them. Besides hospitals and primary care physicianoffices, the health system will involve sensor networks withinintelligenthousesandwearablesplacedonpatients.This turnshealth systems intodiverse settings that areheavily dispersed,(Figure 1).Combiningclinics,healthcarefacilities,smarthousesand different portable nursing appliances, healthcare systems

andinfrastructuresisbeingcomplex,automatedandintegratedmorethaneverbefore.Thesefacilitiesarealsosusceptibletoarangeofnewcyber-attacks.

The automated technologies are gradually at the expense of

Figure 1 Healthcare IoT Platform may include healthcareinstitutions,smarthomes,andwearabledeviceswithsmartphonesservingasgateways.

ARCHIVOS DE MEDICINAISSN 1698-9465

2021Vol.7 No.5:273


2 This article is available in: http://hospital-medical-management.imedpub.com/archive.php

privacy.Thereseemstobeanimplicitbalance,becausealthoughwerecognizeanymisuseofthedatawehold,itremainsavitalfoundationblockinourcultureandmustleadtoeveryremedy.It is realize that there isno100%safedevice, andall sensitivedetails kept on every computer,whether the government, thecompany or otherwise could be infringed and private detailspubliclydisclosed.

Although interconnecting these devices provides severaladvantages,italsobringsprotectionproblemswhichmayaffectdata security and integrity [1]. Security indicators will providecompanies with a tool to test and consider their systems’protection status since attackers often search theweakest link[2]. Clinicians and other healthcare practitioners may not seeprotectionfromthesameangleasMedicalprofessionalsandaremotivated solely by the desire to offer an outstanding servicefor patients [3]. Protection initiativeswill help customers learnabouttheircompany’sexperiencesandpatternsandtesthowtheenterprisedoesamongtheirbusinesspeers[4]. Inrecentyearsthehealthcare industryhasundergone several security threatsand the frequency has escalated. According to a new Verizondatasurvey,theamountofsafetyinfringementsinthehealthcaresectorhasrisenconsiderablyfromthepreviousyear,with85%ofmalwareintheRansomwaremarkettargetingthisbusiness.

Tosecuretheirresources,thevitalinfrastructuresofIoT-enabledhealthcareneedadvancedcyberdefenses.Thesesystemsmustbe scalable, resilient, stable, and capable of detecting a widespectrumof risks and takingwise decisions in proper time. Tomeetthecomplexitiesofensuringtheirstabilityanddurability,acomprehensivetechnologyarchitectureforthesafetyofdiversehealth careenvironments is essential.Resilience,performance,protectionandprivacyaremajorproblemsandposeproblems,itappliesparticularlywhere integratedphysicalandcyber risksto complex health environments. Facing massive measuresto protect critical IoT networks, many remain unintendedlyexposed to take cyber-attack. Dynamic attackers can changetheirapproachestothesecurityenvironmentandtwomeasuresrecently introduced.Thedevicemustalso secure IoTdata thatneeds critical creation and adaptation in IoT protection. ThisanalysisgainsadditionalinformationtoimprovedramaticallythequalityandproductivityofadaptiveprotectioninthepreventionofIoTadaptiveattacks.Thisisdoneby[1]modelingandtestingthemechanismsofadaptiveattackandprotection.

[2] Development of adaptive attack quantitative securitymechanismsusingmathematicalcalculationand[3]performancesimulation tests and assessments using appropriate simulationtechniques,e.g.multiagentsystemsandsystemdynamics.

Earlier, it introducedanevolutionarygameframework [4,5] formodeling adaptive attacks and data integrity protections foradvanced measurement infrastructures. In this article, we [1]presentlargebuildingblocksofacomplexIoThealthcarecyberprotectionarchitecturewhichisfocusedtechnicallyonmachinelearningand[2]simulateandtestthissystembymodelingandtestingtheadaptiveattack-defensestrategy.

Background WorksIn[6]theauthorsdealtwithcreatingamulti-sourceanonymizedmedical database. To achieve data convergence within aheterogeneous environment comprising multiple healthcarefacilities, this issue author presented the approach thusprotecting data efficiency and patient confidentiality. First, tostoreandsharepatientinformationforthediagnosis,theauthorrecommended a stable and modular cloud eHealth system.Second, RSBD algorithm for accurate collection of health dataseparatelyfromvarioussourcesfortesting.

In [7] thewriters address theHealth Information System (HIS)generaldefinitionofprivacy,sincemostHISsareaccessibleonline.The inconsistencies in identity, protection and such relevantworksinHISanduserfeedbackwillsecuretheiridentity.In[8]theauthorssuggested‘PriGen;’ageneralizedstructurethatprotectsthe secrecy of critical cloud data. PriGen helps consumers tosafeguardprivacyagainstthirdpartysupportwhenusingcloud-basedhealthcarefacilities.Thehomomorphicencryptionfeatureon sensitive private data protects the secrecy of the privateinformation submitted by cloud customers to insecure cloud-basedhealthcareservices.

In[9]theauthor‘aimistovalidateandaddresssecurity-privacyconcerns in delivering medical care everywhere. They analysecurrent frameworks, explore the regulation, structural andcross-countrypolicyproblemstoresolvetherelatedprotectionand privacy concerns, and categorize these issues in termsof consumers, websites, communications and computers. Acoordinated initiative by scientific, human and social scienceorganizationsmayreacteffectivelytothecorequestionsofprivacyprotectionatallperiodsinthisalternativemodelofhealthcare.In[10]thescientistsshowedastudyoftheprivacymodelsfortheattack,affiliationdiscloserattackandattributediscloserattack.Theyalsoaddressedthecollectionoftemplatesandmethodsinmultiplediscloserattacksusedtorevealpatientdata.

Consideration of three forms of activities most applicableto health ML development: scientific, organizational andepidemiological. Health activities include the assessment,operationandexaminationofpatients, typically carriedoutbytrainedhealthcareprofessionals,forexample,theconfirmationofthediagnosticprocess.Operationaltasksareoperationssimilarto therapeuticduties,butwhichare importantoruseful in theprocurementofcare,forexample,theproduction,preservationand retrieval of medical records. Eventually, epidemiologicalactivitiesrefertothedetailedassessmentofthehealthconcernsandresultsofacommunityofindividualsinaspecificpopulation.An analogy is the implementation of a disease epidemic alertdevice.SincetheyconnectepidemiologicalapplicationsofMLtoimprovingpeople’scapacitytodetermineintheothercategoriesmentionedhere(clinicalorfunctional),thereisnosignofperfectcomputation for epidemiological activities that have any otherperformancethanadvisingahumanjudgment.

The NASSS project and other studies in emerging healthinfrastructure delivery research underlines the relevance ofdiscussing the benefit proposition of a modern system forhealthcare stakeholders. For various stakeholder classes,


2021Vol.7 No.5:273



the benefit proposition of emerging technology can vary.Deployment mechanisms explicitly discuss the impact ofdisruptiveinnovationsonconsumers,healthcareprofessionals,administrators and politicians, among others. The therapeutic,financial and epidemiological role kinds describedmay lead toseparate benefit recommendations for the various stakeholderclasses,whichimpliesthatimplementationsofMLwhichfavouronecommunityoveranother,forexamplebydefininganinternalschedulingmechanism to optimize cost effectivenessmight behelpful to administrators rather than health care practitioners.Identifyingthediscrepancies invaluerecommendationsforthedifferentpartiestakingpartintheapplicationofMLisasignificantfactorforefficientacceptanceandusage.

ThebenefitsofanMLsystemdeliveringdecisionmakingvsanautomation service aredifferent and requiremultiple formsofdeploymentproblems.ThedesignofdecisionsupportstructuresinpublichealthcarethatdonotincorporateMLtechnologieshasbeen well documented and the issues involve limited control,time constraints anduser experience frustration.Developmentprojects involving ML decision support systems may involveanalysisofpreviousexperience tobuilddevelopmentmethodsto overcome the identified challenges more effectively. Theyexpectautomationdeploymentprojectstoencounterarangeofcommonanddistinctobstacles.

For example, opinions of stakeholders on implementingautonomous robots into several healthy environments haveshownagenerallackofconcern,awarenessandanxietyofhowthepracticeisinterruptedanddispersed.Whileautomationhasoccurredacross technology suchas cardiac testing fordecadesin health care, the question of how appropriate stakeholdersinterpret emerging ways of automation remains a significanttopic.Thisargumentposesthegeneralquestionofautomationthat ML implementations will offer, relevant to uncertaintywhether ML can either improve or eliminate the function ofhealthcareprofessionals.

Anydevicemust satisfy the securityneeds toprotect thedatasecure.

A.Authentication:Authenticationisamechanismwhereasystemteststhecharacterofapersonwhoneedstoaccessit.Itisknownasachiefdefense.

B. Integrity: the intruder can change or update No data orinformation during transmission. The framework must have100%dataconfidentiality,thusimprovingtheconfidencelevel.

C.Confidentiality:itensuresthattheintruderhasnounauthorizedaccesstodetails.

D.Availability:Access todatamustbegivenwhereby the legalusers.Itshouldnotwithholddetailstoauthenticpeople.

Thesystemfocuseson functional simulations in thehealthcareIoTandmodelsforflexibleandcomplexattackersanddefenders.They must test assailant templates against actual cases andscenarios. An efficient processing defender must surpassconventional static defensive strategies dramatically and battleadaptive aggressor strategies. Using evolutionary defensealgorithmsinHealthcare,IoTneedspracticalexamplesoftactics

for attackers and supporters. This may determine how thesetechniques are suited to the opponent ‘behaviour. It mustalso treat theworld as amulti-agency setting because variousattackersanddefenderswillcoexistandcollaborate.Thecreationofthesemodelsthusinvolvesacriticalmixofstatisticalanalysis,gametheory,dynamicsandreal-lifesafetycasesandscenarios.Thereareestablisheddrawbacksofmachinelearningasappliedofmulti-agentcontexts

A. Adaptive Attack Approaches Model

For adaptive attack tactics, many opponents target an IoTmedicalinfrastructureinordertoadverselyaffectthesecrecyortoalterinformationforthem,i.e.change,replicateorinsertfalseinformation.Wehavetomeasurethelossesandtheirsubsequentbenefitstomodelattackpatterns.Attackcostsandbenefitscandifferbasedonattackformsanddatasitesandequipment.

B. Adaptive Security Policy Models

This considers many components to model adaptive securitystrategiesthatreflectdifferentsensors,wearables,smarthomesandnetworksofmedicalinstitutions,andshapeanIoTstructureof healthcare. To construct security plans, protectionexpensesand damagesmust be quantifiedwhere security interventionshave declined. These values rely on the position and types ofinformation.

C. Attack-defense mechanism simulation and review

The evolutionary mechanisms of competitive assault andresponsehaveseveralsimilarities inbiologyand inhumanities.Dynamicsofthemethod.

Customarily used formodelling structures in all these fields, itisaperfectcandidatetogenerateidealmodelsforevolutionaryadaptiveattack-defenseapplications.To improvethesemodels,we may explain relationships between various subsystems,particularlydefinitionsofpermissibleandmaliciousbehaviour.Ascyber-attacksgrowcomplexity,themajorfactorsdrivinggrowingcorporatecyberprotectioninclude:

1. Absence of C-level web governance expertise. Executivescannot allow improvements in organizational protectionpolicy quickly. Such reforms will secure organizationalcapital against the continuously changing and complexexistenceoftoday’scyberthreats.Theworstaspectisthatcyber-criminals may not rob companies of their C-levelethosandthatcyber-securityisconstantlyataproblemformanagementreviewmeetings.

2. Ways to use state-of-the-art identification tools forcybersecurity.Currentdatabasesystemsallowdatacrushingmore effective as the data needed for cybersecurityresearch is accessible concurrently. This practice includesdeveloped strategies for cryptography research, includingartificiallearning,dataminingandinformationexploration.Dataminingisasubcomponentofinformationexplorationwherethedataareretrievedinaparticularseriesofsteps.Information exploration involves data cleaning, collectionandimplementing,previousexpertiseandexistinganalysistechniques.Machinelearninganddataminingdifferwhen


2021Vol.7 No.5:273



they use identical techniques and approaches. Althoughmachinelearningisbasedonclassifyingdatasamplesandpredictingoccurrencesandactivities, it concentratesdataminingontheidentificationofpreviouslyunknowntrendsin data (very close to zero-day cyber assault detection).Implementing these strategies is now one of the majorforcesfororganisations,likecyberprotection,toaccomplishtheirtargets.

3. Fragmented systems for cybersecurity. While possessinga vast range ofmechanisms to protect the infrastructureof an enterprise against cyber threats, it remains a verychallengingproblemforpolicymakers incyberprotection.Somesectors,includingtheinsuranceindustry,maynothaveanacceptablemodeltoadopttoensurethecybersecurity.This ispartlybecauseoftheabsenceofcustomerdatatocreate legal and fraudulent profiles to which computereducationorAItechniquesmaybeadhered;fraudconceptsvary in the insurance industry and the banking sector. Inthe former situation, insurers are primarily worried thatproducts are initiatedwith no previous awareness of theclients and work in a fractured regulatory setting. Forexample,theinsurancesector,unlikebanking,isnottightlycontrolled in the US, burdening the implementation ofcyberprotectionagainstsilverbulletstrategies,sincetheyrely constantly on regulation. Even without the industry-specific cybersecurity context, cybersecurity targets arehamperedthroughoutdifferentindustries.

Materials and MethodsAsimulationillustrationhasbeenappliedandtestedtoillustratetheadaptabilityofthecomplexsystemtocyberthreats(Figure 2).

WerecognizethefollowingnodesasaHealthcareIoTsystem:oneHealthcareinstitution,threesmarthomesandtwosmartphones.Figure2showstheconfigurationofthisdevice.SmartPhone1andSmartPhone2capturewearabletracker info.SmartHome1gathersdetails from threewearables, SmartHome2gathersinformation from two wearables, and SmartMobile 3 gathersdetails about two wearables and Smart Phone 2 collects datafrom two wearables. Both smart homes and smartphones 1

transmittheirdatatoHealthcareInstitutiondirectly,andSmartPhone2transmittheinformationgatheredtoSmartHome3.

Wethereforepresumethatperhapstheattackerwilltargetanydevicenode,andifthedatagatheredbythisnodeisvulnerable,they are vulnerable. To intercept or interrupt data sent fromeithernode, theopponentwilleitherexplicitly targetorattackhisparentnode.Weaddtheident(i)featureforeachnode(ii)toreturnacollectionofchildrenforthatnode.

Thesecuritycostsandattackcostsforeachnodeofthedevicearerepresentedbycd

i and cai,accordingly.Thedatagotasameaning.

Tocalculatethesevalues,anassetvaluev(i)isspecifiedforeachnode.Thesevaluesareautomaticallychosenforthissimulation.We may quantify these values for specific networks througheveryreasonableformofriskevaluation.Welisttheparameterson (Table 1). Theadversarywillswitchfromvariousattacklevels.The set is described by S = s0;s1;…….sp.WedescribearangeofsecurityseriousnesslevelsequivalenttotheattacklevelsasD = d0;d1;…………dp.Weidentifyfourpotential levelsofattackandprotectioninthiscontext.Wesetthefollowingvaluesto:0%(notsecured), 33.3%, 66.6% and 100% (fully secure). The attackerstrategy area KandthesecuritystrategyregionMcompriseallworkable variations of the attack and protection levels aroundthenoderange.

Stochastic Attack-Defense Game Model:Figure2showsthemappingpartnershipbetweencyber-attack-defenseandstochasticgamemodel.Itcomposesthestochasticsystemofanattack-defensesystemandaswitchbetweenstatesinside each state. It is presumed that the two key elements“knowledge”and“gameorder.”Restrictedbyminimalreasoning,theattacker’spastbehaviourandtherewardrolesoftheattackerareclassifiedasprivateinformationoftheattacker(Figure 3).

Weprovideahigh-leveloverviewofourcurrentstrategytocreatean individual IoT security solution that involves annoyance,recognition,learningandlateralmovement.Figure4displaystheenginediagram.Theenginewillsimulate IoTnetworktopologyandproducetheattack-graphfromthehost’sconfiguration(e.g.machines,devices,operatingsystems,software,firewalls,servers,routers). The attack graph links two nodes V1 and V2 wherethere’sachannel,aprotocolandacompromisedV2programthatcan jeopardizeV2onV1.Theengineprovidesa search featuretofindnewvulnerabilitiesinpublicdatabasesofvulnerabilities,including theNationalVulnerabilityDatabase (NVD) [11]. Ifwehave found a new weakness, the attack network is modifiedby inserting new network edges. To exploit the vulnerability,we use the Standard Vulnerability Scoring System (CVSS) [12]todeterminehow the attackerwill reach the vulnerability and

Figure 2 Topology of Adaptive Cybersecurity Framework forHealthcareIoT.

Node v(i) cai cd

i r*d r*

a

Healthcareinstitution 80 16 4 0.39 0.48Smart Home 1 30 6 1.5 0.13 0.10Smart Home 2 30 4 1 0.12 0.10Smart Home 3 20 4 1 0.11 0.11Smart Phone 1 10 2 0.5 0.11 0.09Smart Phone 2 10 2 0.5 0.10 0.10

Table 1:SystemparametersforhealthcareIoTexample.


2021Vol.7 No.5:273



itsdifficulty,andhowmanytimes(ifany) theattackerrequiresverifying. When a new patch is issued from NVD, the deviceimmediatelyappliesthepatchandchangesthethreatgraphtothepatchedexploit(Figure 4).

Figure 3 Mapping relationship between cyber-attack-defenseandstochasticgamemodel.

Figure 4 Bestresponseengineforself-securedsystems.

WeapplyacomplexcybermanipulationsystemuntilweidentifyanintrusiontoconfusetheattackerandtoreducetheeffectoftheintruderontheIoTnetwork.Webuildarigorousmethodforsmart exploitation to identify these attacker features: reward,incentive, power, and zero-day vulnerabilities, not in the NVDdatabase.The learningalgorithmhas toconvergerapidly tobeconsistentwithfrequentshiftsinnetworktopologies.

When an adversary is identified, a stochastic two-player gameillustratestherelationsbetweentheintruderandthedefender.In the game, the states reflect the attack-graph nodes, andthe transformations refer to the edge-vulnerabilities that theintruder will use to shift sideways. The response to the gameofferstheoffendertherightstrategyofannoyance.Providedtheidealstrategyoftheattacker,thebestresponseofthedefenderisdeterminedusingexactfacts.Thebestsolutionineitherstateof playwould cause the process to stabilize easily in a securesituation. The framework follows the best solution to isolateinsecure systems or dynamically update them, thus reducingtheadvancementoftheassaultateachdevicenode.Ultimately,constantvulnerabilityinlearningandtestinghelpsthedevicetorespondtorecentattacks.

Summary and DiscussionInthesectiononcybersecuritysteps,wegroupedtheindicatorsintoseveralgroupstoquantifythesecurityofdevicesandsupportinformeddecisionsbypolicymakers.Wetalkedabouthealthcareissues and agreed thismight help ease some cyber threats byimprovingprotectionmitigationsystemsandinstillingthepositivesafetycultureintheseorganizations.Eventhoughthesestepscanbeutilized inanyorganization, theyareparticularlywell-suitedforclinicalpracticewheretheenddevicesarecomplicatedandwhere, because of existing processes and embedded medicalequipment,thethreatsurfacesaregreater.Thismetricscanhavean overall safety exposurewhenmeasured and enable systemengineerstorespondquicklytoclosegaps.Inthedevelopmentprocess, measures such as those for Red teaming may oftenbe used during implementing new protection technologies byevaluatingtheprotectiondefensesoftheseprojects.

Security vulnerabilities in modern IoT systems analyze cyber risk assessment:OwingtothevulnerabilityofweaknessesincurrentIoTnetworks,cyberriskmanagementmechanisms,riskvectorsandriskrankingsareessentialtotestcritically.Weaddressthecyber-risksrelevanttoIoTandIoTnetworksinthisreport.Wealsoprovidedacrucialoverviewof theMechanisms forcyber security riskevaluation,theirproblemsandinsightsforthefuture,concentratingontheindustrialandhealthcare industries,particularly the InternetofMedicalStuff(IoMT).Developingacyber-risktheoreticalmethodforIoTsystemsisamongthepurposesofthisproject.Basedonliterature and study, it developed a computational method tomeasurecyber-attackforIoTsystemsandtakeintoaccounttheIoT-specific variables. Theseparameterswereused tomeasuretheriskeffectandchanceofIoMTsystems.Theformulasmeasurethe risk scoreanddetermine the (high,medium, low) risk rateof IoMT instruments. IoMTsystemsactivelyaffectand support


2021Vol.7 No.5:273



humanlifebytheavailabilityofresourcesforclinicaltrackingandlife-savingequipment.

Thefirstphaseofriskmanagementinvolvesofassessingtheriskstoan IoTassettobe identifiedandthe intrinsicdangerand itseffectsevaluation.Dangeraffectsincludehigh,mediumandlowscores.Forstarters,a“high”impactratingshowsthattheeffectmaybeimportant.Mediumshowsthattheeffectwillnegative,howeverrecoverable,and/orunpleasant.Lowiswheretheeffectissmallornon-existent.Thenextstepistoassesstheprobabilityofthehack,takingintoconsiderationtheorganization’scontrolsystem.Examplesofchancescoresare:

High—therootofthedangerisstronglydrivenandadequatelysensitive,anddefendsareinadequatetomitigatethevulnerability.

Medium–therootoftheriskisdrivenandwilling,buttherearesafeguardsthatmaydiscourageeffectivevulnerability.

Low–therootoftherisklacksincentiveorpowerorcontrolstodiscourageoratleasthindertheexerciseofvulnerability.

ConclusionCyber attack is a challenge for all businesses and not only forhygiene, but has amuch greater impactwhen it affects publicsafety.Theremarkablegrowthofdevicesandnetworksmartnessdetermines technological well-being. As the works are sharedand managed intelligently, security plays an important role inmaintaining the author’s credibility. The challenges in healthservice,processesandsocietywerediscussed.Inthispaper,weintroducedthekeycomponentsofadynamiccomputersecuritysystemoftheIoTnetwork.

References1. Smith C (2018) Cybersecurity implications in an interconnected

healthcaresystem.FrontHealthServManage35:37-40.

2. CoventryL,BranleyD (2018)Cybersecurity inhealthcare:Anarrativereviewoftrends,threatsandwaysforward.Maturitas113:48-52.

3. R.Koppel,S.W.Smith,J.Blythe,andV.Kothari.(2015)Workaroundstocomputeraccessinhealthcareorganizations:youwantmypasswordoradeadpatient?Booktitle=ITCH215–220.

4. SavolaRM,SavolainenP,EvestiA,AbieH,SihvonenM(2015)Riskdrivensecuritymetricsdevelopmentforane-healthIoTapplication-in2015InformationSecurityforSouthAfrica(ISSA).IEEE1–6.

5. Svetlana Boudko and HabtamuAbie. An evolutionary game forintegrityattacksanddefencesforadvancedmeteringinfrastructure.InProceedingsofthe12thEuropeanConferenceonSoftwareArchitecture:CompanionProceedings (ECSA ’18).ACM,NewYork,NY,USA,Article7-58.

6. Dubovitskaya, Alevtina, Visara, Matteo, Karl, et al. (2015) A Cloud-BasedeHealthArchitectureforPrivacyPreservingDataIntegration.IFIPAdvancesinInformationandCommunicationTechnology.

7. Bindahman,Salah,Zakaria,Nasriah(2011)PrivacyinHealthInformationSystems: A Review. Communications in Computer and InformationScience.

8. Rahman,Farzana,Ahamed,Sheikh,Yang,etal.(2013)PriGen:AGenericFrameworktoPreservePrivacyofHealthcareDataintheCloud.

9. MohdAnwar,JamesJoshi,JosephTan(2015)Anytime,anywhereaccessto secure, privacy-aware healthcare services: Issues, approaches andchallenges.HealthPolicyandTechnology4:299-311.

10. 10.LinaA,Abuwardih,Wa'edShatnawi,AhmedAleroud(2016)Privacypreservingdataminingonpublisheddatainhealthcare:Asurvey:1-6.

11. Booth, Harold, Doug Rike, Gregory A Witte (2013) "The nationalvulnerabilitydatabase(nvd).

12.Mell, Peter, Karen Scarfone Sasha Romanosky (2006) "Commonvulnerabilityscoringsystem."IEEESecurPriv4:85-89.

a study of cybersecurity framework for healthcare internet

Documents