Kill Switch For Pacemakers (And Countermeasures)
Medical device security researchers have figured out how to turn off a pacemaker via remote control.
(Pacemaker implantation diagram)
A pacemaker is a small, battery-operated electronic device which is inserted under the skin to help the heart beat regularly and at an appropriate rate. The pacemaker has leads that travel through a large vein to the heart, where the wires are anchored. The leads send the electrical impulses to the heart to tell it to beat.
Kevin Fu, an associate professor at the University of Massachusetts at Amherst and director of the Medical Device Security Center, said that his team and researchers at the University of Washington spent two years working on the challenge.
William H. Maisel, a doctor at Beth Israel Deaconess Hospital and Harvard Medical School, granted Fu access for the project. Fu received an old pacemaker as the doctor installed a new one in a patient. The team had to use complicated procedures to take apart the pacemaker and reverse engineer its processes. Halperin said that the devices have a built-in test mechanism which turns out to be a bug that can be exploited by hackers. There is no cryptographic key used to secure the wireless communication between the control device and the pacemaker.
A computer acts as a control mechanism for programming the pacemaker so that it can be set to deal with a patientís particular defribrillation needs. Pacemakers administer small shocks to the heart to restore a regular heartbeat. The devices have the ability to induce a fatal shock to a heart.
The authors of the study presented several different zero-power approaches to improve the security of implanted medical devices:
Our contributions include three zero-power defenses and
prototype implementations, one of which we evaluated for
effectiveness in a substance approximating the radio properties
of human tissue. Zero-power notiﬁcation harvests induced RF
energy to wirelessly power a piezo-element that audibly alerts
the patient of security-sensitive events at no cost to the battery.
Zero-power authentication similarly harvests RF energy to
power a cryptographically strong protocol that authenticates
requests from an external device programmer. Finally, sensible
key exchange combines techniques from both zero-power
notiﬁcation and zero-power authentication for vibration-based
key distribution that a patient can sense through audible and
tactile feedback. While we implemented prototypes of our
proposed defenses, we did not incorporate our prototypes into
a real IMD. (We use the term zero-power only to emphasize
that no expenditure of energy from the primary battery is
necessary. Zero-power defenses are also a step beyond the
use of a secondary battery for security-only or other auxiliary
I'm sure someone can think of a better sfnal reference for the idea of turning a person off by remote control; I do recall the "heartplugs" installed by the evil Baron Harkonnen in the (awful) movie version of Dune.
From Defcon: Excuse me while I turn off your pacemaker; see also the author's paper Pacemakers and Implantable Cardiac Deﬁbrillators:
Software Radio Attacks and Zero-Power Defenses [pdf].
Scroll down for more stories in the same category. (Story submitted 8/10/2008)
Follow this kind of news @Technovelgy.
| Email | RSS | Blog It | Stumble | del.icio.us | Digg | Reddit |
you like to contribute a story tip?
Get the URL of the story, and the related sf author, and add
Comment/Join discussion ( 3 )
Related News Stories -
You'll Regrow That Limb, One Day
'... forcing the energy transfer which allowed him to regrow his lost fingers.' - Frank Herbert, 1972.
First 3D Printed Human Corneas From Stem Cells
Just what we need! Lots of spare parts.
Nanorobots Roam Your Bloodstream, Cleaning It
Too bad they won't have lasers, though...
MIT Ampli Blocks Build Biomedical Devices
Damn it Spock, I'm a doctor not an engineer!
Technovelgy (that's tech-novel-gee!)
is devoted to the creative science inventions and ideas of sf authors. Look for
the Invention Category that interests
you, the Glossary, the Invention
Timeline, or see what's New.
PAL-V Liberty Flying Helicopter Car
'...lifted themselves to skimming flight upon whirling helicopters."
Space Drones - UK's Effective Space To Launch Rocket Tugs
'Twenty rocket tugs towed it from its Earth hangar out into space.'
DIY Autonomous Robot Detects Trash
'The search-bug detached itself and rolled forward.'
Ancient Russian Walking Excavator Would Be Perfect RV
I don't need it to go fast, it just needs to amble along.
ELROI Satellite 'License Plate'
Robert Heinlein was thinking about this in 1941.
When Robots Beg For Their Lives
"Just what do you think you're doing... Dave.'
Do You Still Want A Folding Screen Phone?
'A paper thin polycarbon screen unfurled...'
'Snapchat Dysmorphia' Now A Thing, Say Plastic Surgeons
'The program raced up the screen one scan line at a time, subtly smoothing, deleting and coloring.'
Quiet Electric Cars Law Finalized By US Transportation Department
'... a sound tape to supply the noise'
Drone Assassin Fails To Kill Venezuelan President
'The spotter descends, and we think it searches the vicinity, looking for the victim's face...'
Stick-On Tape Speakers, As Predicted By Bruce Sterling
Flexible tape speakers, someday.
Bezos Invites You To New Life In Off-World Colonies
'A new life awaits you!'
Amazon's Rekognition System Sees Criminals In Congress
'... the imprint of her image on the telephoto cell.'
Build Your Own Space Suit For Cheap
'I'm going to pump the air from this room... so that the interior will be like airless and pressure-less space.'
CIMON Space Sidekick For Weary Astronauts
I welcome our floating robotic assistants.
SRI MicroFactory Of Microrobots Recalls Dick's Autofac
'Microscopic machinery, smaller than ants... constructing something...'
More SF in the News Stories
More Beyond Technovelgy science news stories