Abstract:
Internet of Things (IoT), also referred to as the Internet of Objects, is transforming the approach for providing numerous services. Compact and portable lightweight smart devices are an essential part of IoT. They range widely in use, size, energy capacity, and computation power. However, the integration of these smart things into the standard Internet introduces several security challenges because the majority of Internet technologies and communication protocols were not initially designed to support IoT. Moreover, commercialization of IoT has led to public security concerns, including personal privacy issues, threat of cyber attacks, and organized crime. In order to provide a guideline for those who want to investigate IoT security and contribute to its improvement, a comprehensive list of vulnerabilities is provided first along with suitable countermeasures against them.

Most IoT initiatives in healthcare revolved around the improvement of care as such with remote monitoring and telemonitoring as main applications. Wearable medical sensors (WMSs) are garnering ever-increasing attention from both the scientific community and the industry. Driven by technological advances in sensing, wireless communication, and machine learning, WMS-based systems have begun transforming our daily lives.

A second area where many initiatives exist is tracking, monitoring and maintenance of assets on the level of medical devices and healthcare assets, the people level and the non¬medical asset level (e.g. hospital building assets). These deployments are just the beginning and, at the same time, are far from omnipresent. More advanced and integrated approaches within the scope of the digital transformation of healthcare are starting to be used with regards to health data aspects where IoT plays an increasing role, as it does in specific applications such as smart pills, smart home care, personal healthcare, robotics and Real¬Time Health Systems (RTHS).

Notwithstanding all these benefits, Information security has become an important concern in healthcare systems, owing to the increasing prevalence of medical devices and the growing use of wearable and mobile computing platforms for health and lifestyle monitoring. Early works in the area of health information security has largely focused on attacks on the wireless communication channel of medical devices, or on health data stored in online databases. Recent works have also addressed entirely different angles to health information security being motivated by the insight that the human body itself is a rich source (acoustic, visual, and electromagnetic) of data.

Although WMSs were initially developed to enable low-cost solutions for continuous health monitoring, the applications of WMS-based systems now range far beyond health care. Several research efforts have proposed the use of such systems in diverse application domains, e.g., education, human-computer interaction, and security. Even though the number of such research studies has grown drastically in the last few years, the potential challenges associated with their design, development, and implementation are neither well-studied nor well-recognized.

This lecture presents first the different aspects of IoT security and then a couple of scenarios depicting the potential risks. Next, the desiderata for secure healthcare IoT system design are discussed in general, followed by possible cases of inadvertent information leakage. Finally, energy efficiency of health monitoring is addressed and how applications of healthcare IoT systems beyond health monitoring can be built is described.