News

08.05.2018

More protection against cyberattacks: Recommendation for network-compatible medical devices

The new BSI recommendation for network-compatible medical devices, into which ZVEI expert knowledge has been incorporated, serves as a support for manufacturers to take appropriate account of aspects of cybersecurity

Cyberattacks on hospitals in Germany have shown that cybersecurity must also be improved in the health industry. Hospitals classified as critical infrastructure in accordance with the BSI Act are obliged to prove to the Federal Office for Information Security (BSI) by June 2019 at the latest that they have successfully implemented state-of-the-art IT security measures.

According to BSI and ZVEI - German Electrical and Electronic Manufacturers' Association - these IT security measures also include network-compatible medical products. The new BSI recommendation for network-compatible medical devices, into which ZVEI expert knowledge has been incorporated, serves as support for manufacturers to take appropriate account of aspects of cybersecurity.

 

Contributing to a higher level of protection against cyberattacks on health facilities

The aim of the recommendation is to define requirements for networked medical devices and to contribute to an overall higher level of protection against cyberattacks on health facilities. A compilation of best practices is intended to support the implementation and maintenance of an appropriate state-of-the-art cyber-security level. Instead of concrete instructions for action, which may not be equally applicable to all products, questions relevant to cybersecurity are asked for individual areas. The questions should enable the manufacturer to generate and implement the necessary instructions for his product. 

"Cybersecurity requires the cooperation of all parties involved, but also the exchange of information," says Hans-Peter Bursig, Managing Director Medical Engineering Division (ZVEI). "The ZVEI therefore invited manufacturers, users and BSI to an initial strategy discussion on 'Medical Technology Cyber Safety' as early as November 2017. There was a consensus that medical technology must be part of a comprehensive cybersecurity strategy. However, this comprehensive cybersecurity strategy must also be based on the cooperation and coordination of all parties involved." The exchange will therefore be continued at the German X-Ray Congress with a second strategy discussion. 

 

Presentation of the BSI recommendation at the German Congress of Radiology

The presentation of the BSI recommendation "Cybersafety requirements for network-compatible medical devices" will take place on Wednesday, 9 May 2018 at 4:45 p.m. at the German X-Ray Congress (Forum IT II - Cybersecurity in Medical Technology, Hall 2, Rieder Room) in Leipzig.

The BSI recommendation "Cybersafety requirements for network-compatible medical devices" can be downloaded from the right-hand column (only in German language).

 

You may also be interested in:

Further

Most visited pages

Publications

Read more

Industrie 4.0

Read more

Mobility

Read more

Energy

Read more

Subjects

Read more

DC-INDUSTRIE

Energiewende meets Industrie 4.0

Together with its partners in the DC-INDUSTRIE project, ZVEI is developing network management options for the future. The motto:...

5G-ACIA

Designing 5G for Industrial Use

5G allows machines to communicate with each other in real time, saving resources and energy through Edge Computing and Massive...

ZVEI explains Supply Chain Management

Electronic supply chains are complex. This is why it is of importance to manage their complexity well. The PROS definiton...

ZVEI explains RAMI 4.0 (Chinese subtitles)

To create a uniform basis for Industrie 4.0, ZVEI has teamed up with its partners to develop RAMI 4.0, the reference architecture...

Implementing Industrie 4.0: This is how it works!

Industrie 4.0 is no longer just a theory, the practice is now being applied in many German businesses. The demands of a global...