BCG ECG-based secure communication for medical devices in Body Area Networks

Nils Beck; Si Zuo; Stephan Sigg

doi:10.1109/PerComWorkshops51409.2021.9430964

BCG ECG-based secure communication for medical devices in Body Area Networks

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Scientific › peer-review

Abstract

An increasing amount of medical devices, such as pacemakers or insulin pumps, can communicate in wireless Body Area Networks (BANs). While this facilitates the interaction between users and medical devices, something that was previously more complicated or - in the case of implanted devices - often impossible, it also raises security and privacy questions. We exploit the wide availability of ballistocardiographs (BCG) and electrocardiographs (ECG) in consumer wearables and propose MEDISCOM, an ad-hoc, implicit, and secure communication protocol for medical devices in local BANs. Deriving common secret keys from a body's BCG or ECG signal, MEDISCOM ensures confidentiality and integrity of sensitive medical data. It also continuously authenticates devices, requiring no explicit user interaction and maintaining a low computational overhead. We consider relevant attack vectors and show how MEDISCOM is resilient towards them. Also, we validate the security of our protocol's secret keys on BCG and ECG data from 29 subjects.

Original language	English
Title of host publication	2021 IEEE International Conference on Pervasive Computing and Communications Workshops and other Affiliated Events, PerCom Workshops 2021
Publisher	IEEE
Pages	207-212
Number of pages	6
ISBN (Electronic)	9781665404242
DOIs	https://doi.org/10.1109/PerComWorkshops51409.2021.9430964
Publication status	Published - 25 May 2021
MoE publication type	A4 Article in a conference publication
Event	IEEE International Conference on Pervasive Computing and Communications Workshops - Kassel, Germany Duration: 22 Mar 2021 → 26 Mar 2021 https://www.percom.org/

Publication series

Name	IEEE international conference on pervasive computing and communications workshops
Publisher	IEEE

Conference

Conference	IEEE International Conference on Pervasive Computing and Communications Workshops
Abbreviated title	PerCom Workshops
Country	Germany
City	Kassel
Period	22/03/2021 → 26/03/2021
Internet address	https://www.percom.org/

Keywords

embedded and mobile devices
health data
pervasive computing
protocol
usable security

Access to Document

10.1109/PerComWorkshops51409.2021.9430964

Cite this

Beck, N., Zuo, S., & Sigg, S. (2021). BCG ECG-based secure communication for medical devices in Body Area Networks. In 2021 IEEE International Conference on Pervasive Computing and Communications Workshops and other Affiliated Events, PerCom Workshops 2021 (pp. 207-212). [9430964] (IEEE international conference on pervasive computing and communications workshops). IEEE. https://doi.org/10.1109/PerComWorkshops51409.2021.9430964

@inproceedings{d39dbf58436a4dd0a33474347cd0949c,

title = "BCG ECG-based secure communication for medical devices in Body Area Networks",

abstract = "An increasing amount of medical devices, such as pacemakers or insulin pumps, can communicate in wireless Body Area Networks (BANs). While this facilitates the interaction between users and medical devices, something that was previously more complicated or - in the case of implanted devices - often impossible, it also raises security and privacy questions. We exploit the wide availability of ballistocardiographs (BCG) and electrocardiographs (ECG) in consumer wearables and propose MEDISCOM, an ad-hoc, implicit, and secure communication protocol for medical devices in local BANs. Deriving common secret keys from a body's BCG or ECG signal, MEDISCOM ensures confidentiality and integrity of sensitive medical data. It also continuously authenticates devices, requiring no explicit user interaction and maintaining a low computational overhead. We consider relevant attack vectors and show how MEDISCOM is resilient towards them. Also, we validate the security of our protocol's secret keys on BCG and ECG data from 29 subjects. ",

keywords = "embedded and mobile devices, health data, pervasive computing, protocol, usable security",

author = "Nils Beck and Si Zuo and Stephan Sigg",

note = "Publisher Copyright: {\textcopyright} 2021 IEEE.; IEEE International Conference on Pervasive Computing and Communications Workshops, PerCom Workshops ; Conference date: 22-03-2021 Through 26-03-2021",

year = "2021",

month = may,

day = "25",

doi = "10.1109/PerComWorkshops51409.2021.9430964",

language = "English",

series = "IEEE international conference on pervasive computing and communications workshops",

publisher = "IEEE",

pages = "207--212",

booktitle = "2021 IEEE International Conference on Pervasive Computing and Communications Workshops and other Affiliated Events, PerCom Workshops 2021",

address = "United States",

url = "https://www.percom.org/",

}

Beck, N, Zuo, S & Sigg, S 2021, BCG ECG-based secure communication for medical devices in Body Area Networks. in 2021 IEEE International Conference on Pervasive Computing and Communications Workshops and other Affiliated Events, PerCom Workshops 2021., 9430964, IEEE international conference on pervasive computing and communications workshops, IEEE, pp. 207-212, IEEE International Conference on Pervasive Computing and Communications Workshops, Kassel, Germany, 22/03/2021. https://doi.org/10.1109/PerComWorkshops51409.2021.9430964

BCG ECG-based secure communication for medical devices in Body Area Networks. / Beck, Nils; Zuo, Si ; Sigg, Stephan.

2021 IEEE International Conference on Pervasive Computing and Communications Workshops and other Affiliated Events, PerCom Workshops 2021. IEEE, 2021. p. 207-212 9430964 (IEEE international conference on pervasive computing and communications workshops).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Scientific › peer-review

TY - GEN

T1 - BCG ECG-based secure communication for medical devices in Body Area Networks

AU - Beck, Nils

AU - Zuo, Si

AU - Sigg, Stephan

PY - 2021/5/25

Y1 - 2021/5/25

N2 - An increasing amount of medical devices, such as pacemakers or insulin pumps, can communicate in wireless Body Area Networks (BANs). While this facilitates the interaction between users and medical devices, something that was previously more complicated or - in the case of implanted devices - often impossible, it also raises security and privacy questions. We exploit the wide availability of ballistocardiographs (BCG) and electrocardiographs (ECG) in consumer wearables and propose MEDISCOM, an ad-hoc, implicit, and secure communication protocol for medical devices in local BANs. Deriving common secret keys from a body's BCG or ECG signal, MEDISCOM ensures confidentiality and integrity of sensitive medical data. It also continuously authenticates devices, requiring no explicit user interaction and maintaining a low computational overhead. We consider relevant attack vectors and show how MEDISCOM is resilient towards them. Also, we validate the security of our protocol's secret keys on BCG and ECG data from 29 subjects.

AB - An increasing amount of medical devices, such as pacemakers or insulin pumps, can communicate in wireless Body Area Networks (BANs). While this facilitates the interaction between users and medical devices, something that was previously more complicated or - in the case of implanted devices - often impossible, it also raises security and privacy questions. We exploit the wide availability of ballistocardiographs (BCG) and electrocardiographs (ECG) in consumer wearables and propose MEDISCOM, an ad-hoc, implicit, and secure communication protocol for medical devices in local BANs. Deriving common secret keys from a body's BCG or ECG signal, MEDISCOM ensures confidentiality and integrity of sensitive medical data. It also continuously authenticates devices, requiring no explicit user interaction and maintaining a low computational overhead. We consider relevant attack vectors and show how MEDISCOM is resilient towards them. Also, we validate the security of our protocol's secret keys on BCG and ECG data from 29 subjects.

KW - embedded and mobile devices

KW - health data

KW - pervasive computing

KW - protocol

KW - usable security

UR - http://www.scopus.com/inward/record.url?scp=85107602784&partnerID=8YFLogxK

U2 - 10.1109/PerComWorkshops51409.2021.9430964

DO - 10.1109/PerComWorkshops51409.2021.9430964

M3 - Conference contribution

AN - SCOPUS:85107602784

T3 - IEEE international conference on pervasive computing and communications workshops

SP - 207

EP - 212

BT - 2021 IEEE International Conference on Pervasive Computing and Communications Workshops and other Affiliated Events, PerCom Workshops 2021

PB - IEEE

T2 - IEEE International Conference on Pervasive Computing and Communications Workshops

Y2 - 22 March 2021 through 26 March 2021

ER -

Beck N, Zuo S , Sigg S. BCG ECG-based secure communication for medical devices in Body Area Networks. In 2021 IEEE International Conference on Pervasive Computing and Communications Workshops and other Affiliated Events, PerCom Workshops 2021. IEEE. 2021. p. 207-212. 9430964. (IEEE international conference on pervasive computing and communications workshops). https://doi.org/10.1109/PerComWorkshops51409.2021.9430964

BCG ECG-based secure communication for medical devices in Body Area Networks

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this