The group also wants the government to establish a clear channel through the United States Computer Emergency Readiness Team for reporting security problems with medical devices — including pacemakers, defibrillators, and insulin pumps – so vulnerabilities can be easily tracked and addressed.
Advances in technology have created numerous medical devices that can be monitored and controlled wirelessly to change settings and gauge that they’re operating properly. But vendors have failed to secure the devices to prevent an unauthorized party from communicating and tampering with them — a potentially deadly security problem.
That prompted the Information Security and Privacy Advisory Board, which advises the National Institute of Standards and Technology (NIST) as well as the Office of Management and Budget, to send a letter to the latter office (PDF) on Mar. 30 calling for reform.