They can hear your heartbeats: Non-invasive security for implantable medical devices

Shyamnath Gollakota; Haitham Hassanieh; Benjamin Ransford; Dina Katabi; Kevin Fu

doi:10.1145/2043164.2018438

They can hear your heartbeats: Non-invasive security for implantable medical devices

Shyamnath Gollakota, Haitham Hassanieh, Benjamin Ransford, Dina Katabi, Kevin Fu

Research output: Contribution to journal › Article › peer-review

Abstract

Wireless communication has become an intrinsic part of modern implantable medical devices (IMDs). Recent work, however, has demonstrated that wireless connectivity can be exploited to compromise the confidentiality of IMDs' transmitted data or to send unauthorized commands to IMDs-even commands that cause the device to deliver an electric shock to the patient. The key challenge in addressing these attacks stems from the difficulty of modifying or replacing already-implanted IMDs. Thus, in this paper, we explore the feasibility of protecting an implantable device from such attacks without modifying the device itself. We present a physical-layer solution that delegates the security of an IMD to a personal base station called the shield. The shield uses a novel radio design that can act as a jammer-cum-receiver. This design allows it to jam the IMD's messages, preventing others from decoding them while being able to decode them itself. It also allows the shield to jam unauthorized commands-even those that try to alter the shield's own transmissions. We implement our design in a software radio and evaluate it with commercial IMDs. We find that it effectively provides confidentiality for private data and protects the IMD from unauthorized commands.

Original language	English (US)
Pages (from-to)	2-13
Number of pages	12
Journal	Computer Communication Review
Volume	41
Issue number	4
DOIs	https://doi.org/10.1145/2043164.2018438
State	Published - Aug 15 2011
Externally published	Yes

Keywords

Full-duplex
Implanted medical devices
Wireless

ASJC Scopus subject areas

Software
Computer Networks and Communications

Online availability

10.1145/2043164.2018438

Library availability

Discover UIUC Full Text

Cite this

@article{058f9d872e5246e5a4246a4aba955196,

title = "They can hear your heartbeats: Non-invasive security for implantable medical devices",

abstract = "Wireless communication has become an intrinsic part of modern implantable medical devices (IMDs). Recent work, however, has demonstrated that wireless connectivity can be exploited to compromise the confidentiality of IMDs' transmitted data or to send unauthorized commands to IMDs-even commands that cause the device to deliver an electric shock to the patient. The key challenge in addressing these attacks stems from the difficulty of modifying or replacing already-implanted IMDs. Thus, in this paper, we explore the feasibility of protecting an implantable device from such attacks without modifying the device itself. We present a physical-layer solution that delegates the security of an IMD to a personal base station called the shield. The shield uses a novel radio design that can act as a jammer-cum-receiver. This design allows it to jam the IMD's messages, preventing others from decoding them while being able to decode them itself. It also allows the shield to jam unauthorized commands-even those that try to alter the shield's own transmissions. We implement our design in a software radio and evaluate it with commercial IMDs. We find that it effectively provides confidentiality for private data and protects the IMD from unauthorized commands.",

keywords = "Full-duplex, Implanted medical devices, Wireless",

author = "Shyamnath Gollakota and Haitham Hassanieh and Benjamin Ransford and Dina Katabi and Kevin Fu",

note = "Funding Information: Acknowledgments: We thank Arthur Berger, Ramesh Chandra, Rick Hampton, Steve Hanna, Dr. Daniel Kramer, Swarun Kumar, Nate Kush-man, Kate Lin, Hariharan Rahul, Stefan Savage, Keith Winstein, and Nick-olai Zeldovich for their insightful comments. The authors acknowledge the financial support of the Interconnect Focus Center, one of the six research centers funded under the Focus Center Research Program, a Semiconductor Research Corporation program. This research is also supported by NFS CNS-0831244, an NSF Graduate Research Fellowship, a Sloan Research Fellowship, the Armstrong Fund for Science, and Cooperative Agreement No. 90TR0003/01 from the Department of Health and Human Services. Its contents are solely the responsibility of the authors and do not necessarily represent the official views of the DHHS or NSF. K. Fu is listed as an inventor on patent applications pertaining to zero-power security and low-power flash memory both with assignee UMass. Publisher Copyright: {\textcopyright} 2011 ACM.",

year = "2011",

month = aug,

day = "15",

doi = "10.1145/2043164.2018438",

language = "English (US)",

volume = "41",

pages = "2--13",

journal = "Computer Communication Review",

issn = "0146-4833",

publisher = "Association for Computing Machinery",

number = "4",

}

TY - JOUR

T1 - They can hear your heartbeats

T2 - Non-invasive security for implantable medical devices

AU - Gollakota, Shyamnath

AU - Hassanieh, Haitham

AU - Ransford, Benjamin

AU - Katabi, Dina

AU - Fu, Kevin

N1 - Funding Information: Acknowledgments: We thank Arthur Berger, Ramesh Chandra, Rick Hampton, Steve Hanna, Dr. Daniel Kramer, Swarun Kumar, Nate Kush-man, Kate Lin, Hariharan Rahul, Stefan Savage, Keith Winstein, and Nick-olai Zeldovich for their insightful comments. The authors acknowledge the financial support of the Interconnect Focus Center, one of the six research centers funded under the Focus Center Research Program, a Semiconductor Research Corporation program. This research is also supported by NFS CNS-0831244, an NSF Graduate Research Fellowship, a Sloan Research Fellowship, the Armstrong Fund for Science, and Cooperative Agreement No. 90TR0003/01 from the Department of Health and Human Services. Its contents are solely the responsibility of the authors and do not necessarily represent the official views of the DHHS or NSF. K. Fu is listed as an inventor on patent applications pertaining to zero-power security and low-power flash memory both with assignee UMass. Publisher Copyright: © 2011 ACM.

PY - 2011/8/15

Y1 - 2011/8/15

N2 - Wireless communication has become an intrinsic part of modern implantable medical devices (IMDs). Recent work, however, has demonstrated that wireless connectivity can be exploited to compromise the confidentiality of IMDs' transmitted data or to send unauthorized commands to IMDs-even commands that cause the device to deliver an electric shock to the patient. The key challenge in addressing these attacks stems from the difficulty of modifying or replacing already-implanted IMDs. Thus, in this paper, we explore the feasibility of protecting an implantable device from such attacks without modifying the device itself. We present a physical-layer solution that delegates the security of an IMD to a personal base station called the shield. The shield uses a novel radio design that can act as a jammer-cum-receiver. This design allows it to jam the IMD's messages, preventing others from decoding them while being able to decode them itself. It also allows the shield to jam unauthorized commands-even those that try to alter the shield's own transmissions. We implement our design in a software radio and evaluate it with commercial IMDs. We find that it effectively provides confidentiality for private data and protects the IMD from unauthorized commands.

AB - Wireless communication has become an intrinsic part of modern implantable medical devices (IMDs). Recent work, however, has demonstrated that wireless connectivity can be exploited to compromise the confidentiality of IMDs' transmitted data or to send unauthorized commands to IMDs-even commands that cause the device to deliver an electric shock to the patient. The key challenge in addressing these attacks stems from the difficulty of modifying or replacing already-implanted IMDs. Thus, in this paper, we explore the feasibility of protecting an implantable device from such attacks without modifying the device itself. We present a physical-layer solution that delegates the security of an IMD to a personal base station called the shield. The shield uses a novel radio design that can act as a jammer-cum-receiver. This design allows it to jam the IMD's messages, preventing others from decoding them while being able to decode them itself. It also allows the shield to jam unauthorized commands-even those that try to alter the shield's own transmissions. We implement our design in a software radio and evaluate it with commercial IMDs. We find that it effectively provides confidentiality for private data and protects the IMD from unauthorized commands.

KW - Full-duplex

KW - Implanted medical devices

KW - Wireless

UR - http://www.scopus.com/inward/record.url?scp=85091027982&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85091027982&partnerID=8YFLogxK

U2 - 10.1145/2043164.2018438

DO - 10.1145/2043164.2018438

M3 - Article

AN - SCOPUS:85091027982

SN - 0146-4833

VL - 41

SP - 2

EP - 13

JO - Computer Communication Review

JF - Computer Communication Review

IS - 4

ER -

They can hear your heartbeats: Non-invasive security for implantable medical devices

Abstract

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this