EECS 598-008 Winter 2013

Medical Device Security

Some of the copyrighted links below may require access from a University of Michigan IP address to download PDFs.
  1. Course reader table of contents (just the non-electronic papers)
  2. Signup sheet
  3. Syllabus
  4. Computer Viruses are Rampant on Medical Devices in Hospitals
  5. An Investigation of the Therac-25 Accidents by Leveson and Turner, IEEE Computer, 26(7), July 1993.
  6. "Computers and Risk" in Safeware by Leveson, 1995. [see course reader]
  7. ISPAB panel discussion on medical device security [see CTools]
  8. Unpublished manuscript on non-intrusive malware detection [paper copy]
  9. Investigation of an accidental exposure of radiotherapy patients in Panama (optional readings)
  10. Attack Trees by Bruce Schneier, Dr. Dobbs Journal, 1999.
  11. Generic Safety Requirements for Developing Safe Insulin Pump Software by Zhang et al., Journal of Diabetes Science and Technology, 2011.
  12. Problems with a syringe pump (Harold Thimbleby's video, rest below optional)
  13. Security and Privacy for Implantable Medical Devices by Halperin et al. IEEE Pervasive Computing, Special Issue on Implantable Electronics 7(1), January 2008.
  14. Pacemakers and implantable cardiac defibrillators: Software radio attacks and zero-power defenses by Halperin et al. In Proceedings of the 29th Annual IEEE Symposium on Security and Privacy, May 2008.
  15. Optimal Policy for Software Vulnerability Disclosure by Arora et al. In Journal of Management Science, 54(4), April 2008, pp. 642-656.
  16. Healthcare Technology in a Wireless World, AAMI, 2012.
  17. Economics of Information Security by Ross Anderson and Bruce Schneier. In IEEE S&P magazine, 2005.