 |
Kill Switch For Pacemakers (And Countermeasures)
Medical device security researchers have figured out how to turn off a pacemaker via remote control.
(Pacemaker implantation diagram)
A pacemaker is a small, battery-operated electronic device which is inserted under the skin to help the heart beat regularly and at an appropriate rate. The pacemaker has leads that travel through a large vein to the heart, where the wires are anchored. The leads send the electrical impulses to the heart to tell it to beat.
Kevin Fu, an associate professor at the University of Massachusetts at Amherst and director of the Medical Device Security Center, said that his team and researchers at the University of Washington spent two years working on the challenge.
William H. Maisel, a doctor at Beth Israel Deaconess Hospital and Harvard Medical School, granted Fu access for the project. Fu received an old pacemaker as the doctor installed a new one in a patient. The team had to use complicated procedures to take apart the pacemaker and reverse engineer its processes. Halperin said that the devices have a built-in test mechanism which turns out to be a bug that can be exploited by hackers. There is no cryptographic key used to secure the wireless communication between the control device and the pacemaker.A computer acts as a control mechanism for programming the pacemaker so that it can be set to deal with a patient’s particular defribrillation needs. Pacemakers administer small shocks to the heart to restore a regular heartbeat. The devices have the ability to induce a fatal shock to a heart.
The authors of the study presented several different zero-power approaches to improve the security of implanted medical devices:
Our contributions include three zero-power defenses and prototype implementations, one of which we evaluated for effectiveness in a substance approximating the radio properties of human tissue. Zero-power notification harvests induced RF energy to wirelessly power a piezo-element that audibly alerts the patient of security-sensitive events at no cost to the battery. Zero-power authentication similarly harvests RF energy to power a cryptographically strong protocol that authenticates requests from an external device programmer. Finally, sensible key exchange combines techniques from both zero-power notification and zero-power authentication for vibration-based key distribution that a patient can sense through audible and tactile feedback. While we implemented prototypes of our proposed defenses, we did not incorporate our prototypes into a real IMD. (We use the term zero-power only to emphasize that no expenditure of energy from the primary battery is necessary. Zero-power defenses are also a step beyond the use of a secondary battery for security-only or other auxiliary purposes.)
I'm sure someone can think of a better sfnal reference for the idea of turning a person off by remote control; I do recall the "heartplugs" installed by the evil Baron Harkonnen in the (awful) movie version of Dune.
From Defcon: Excuse me while I turn off your pacemaker; see also the author's paper Pacemakers and Implantable Cardiac Defibrillators: Software Radio Attacks and Zero-Power Defenses [pdf].
Scroll down for more stories in the same category. (Story submitted 8/10/2008)
Follow this kind of news @Technovelgy.| Email | RSS | Blog It | Stumble | del.icio.us | Digg | Reddit |
Would
you like to contribute a story tip?
It's easy:
Get the URL of the story, and the related sf author, and add
it here.
Comment/Join discussion ( 3 )
Related News Stories - (" Medical ")
Spray-On Skin For Burns From ReCell Kit
Spray-on skin prepared from a patient's own skin cells may be the perfect choice for even severe second-degree burns.
Gregory Benford On Artificial Biological Selection for Longevity
Benford, a physics professor and sf writer, has put his money where Robert Heinlein's mouth was, and created a corporation to extend human life.
Your Thoughts On Youtube?
Scientists pull information out of the brains of people watching Youtube. Make up your own joke, but this method seems to work.
Death Algorithm Developed In Japan
Interesting work raises moral questions; I wonder if this algorithm will me made available in a simple home test.
Technovelgy (that's tech-novel-gee!) is devoted to the creative science inventions and ideas of sf authors. Look for the Invention Category that interests you, the Glossary, the Invention Timeline, or see what's New.
Current News
AirRobot Micro-UAV 'Fairies' In Shakespeare Play
At least they were not the 'rude mechanicals'.
Paralysis Ray Uses Photocontrolled Molecular Switch
Gerry was dubious. She had seen abortive attempts at paralysis rays before.
Brine Wells May Swallow Towns
Dissolve 1 teaspoon of the Quadraturin essence in 1 cup of water.
Will In-Vitro Meat Change Our Lives?
ChickieNobs, anyone?
Walky iPhone Finger Gesture Robot Controller
Let your fingers - uh - your robot do the walking. And hopping.
OnStar Stolen Vehicle Slowdown Foils Carjacker
Better than a car chase.
Robot Martial Arts Videos
Robo-Shiko!
Interactive TV Patent From Sony
Can you dance faster than the White Clown?
Smart Contact Lens With Power Harvesting Circuits
Smart contacts with VR connections.
'Significant Amount' Of Lunar Water Found
Droogs! There's water ice on the moon!
FOXP2 Tweak Yields Planet Of The Apes?
Get your filthy words off me, you damn dirty ape!
Lev, Theremin-Playing Robot
Patsy Cline classic played by robot.
XT-1 Micro Mouse With Blazing Speed
These are fully autonomouse robots.
Escape Pods, Refuge Of ISS Astronauts From Space Junk
Who first thought about escape pods?
Steerable Bowling Ball Is A Cheesy Spherical Robot
Once the province of geeks, now in bowling alleys.
Bio-Mechanics And Micro-Robotic Flight
Micro air vehicles and insect flight.
