Featured Research

from universities, journals, and other organizations

New password in a heartbeat

Date:
September 23, 2013
Source:
Rice University
Summary:
Researchers propose a system to prevent cyberattacks on pacemakers, defibrillators and other devices that use wireless communications.

Pacemakers, insulin pumps, defibrillators and other implantable medical devices often have wireless capabilities that allow emergency workers to monitor patients. But these devices have a potential downside: They can be hacked.

Related Articles


Researchers at Rice University have come up with a secure way to dramatically cut the risk that an implanted medical device (IMD) could be altered remotely without authorization.

Their technology would use the patient's own heartbeat as a kind of password that could only be accessed through touch.

Rice electrical and computer engineer Farinaz Koushanfar and graduate student Masoud Rostami will present Heart-to-Heart, an authentication system for IMDs, at the Association for Computing Machinery's Conference on Computer and Communications Security in Berlin in November. They developed the technology with Ari Juels, former chief scientist at RSA Laboratories, a security company in Cambridge, Mass.

IMDs generally lack the kind of password security found on a home Wi-Fi router because emergency medical technicians often need quick access to the information the devices store to save a life, Rostami said. But that leaves the IMDs open to attack.

"If you have a device inside your body, a person could walk by, push a button and violate your privacy, even give you a shock," he said. "He could make (an insulin pump) inject insulin or update the software of your pacemaker. But our proposed solution forces anybody who wants to read the device to touch you."

The system would require software in the IMD to talk to the "touch" device, called the programmer. When a medical technician touches the patient, the programmer would pick up an electrocardiogram (EKG) signature from the beating heart. The internal and external devices would compare minute details of the EKG and execute a "handshake." If signals gathered by both at the same instant match, they become the password that grants the external device access.

"The signal from your heartbeat is different every second, so the password is different each time," Rostami said. "You can't use it even a minute later."

He compared the EKG to a chart of a financial stock. "We're looking at the minutia," Rostami said. "If you zoom in on a stock, it ticks up and it ticks down every microsecond. Those fine details are the byproduct of a very complex system and they can't be predicted."

A human heartbeat is the same, he said. It seems steady, but on closer view every beat has unique characteristics that can be read and matched. "We treat your heart as if it were a random number generator," he said.

The system could potentially be used with the millions of IMDs already in use, Koushanfar said. "To our knowledge, this is the first fully secure solution that has small overhead and can work with legacy systems," she said. "Like any device that has wireless access, we can simply update the software."

Koushanfar noted the software would require very little of an IMD's precious power, unlike other suggested secure solutions that require computationally intensive -- and battery draining -- cryptography. "We're hopeful," she said. "We think everything here is a practical technology."

Implementation would require cooperation with device manufacturers who, Koushanfar said, hold their valuable, proprietary secrets very close to the chest, as well as approval by the Food and Drug Administration.

But the time to pursue IMD security is here, Rostami insisted. "People will have more implantable devices, not fewer," he said. "We already have devices for the heart and insulin pumps, and now researchers are talking about putting neuron stimulators inside the brain. We should make sure all these things are secure."


Story Source:

The above story is based on materials provided by Rice University. Note: Materials may be edited for content and length.


Cite This Page:

Rice University. "New password in a heartbeat." ScienceDaily. ScienceDaily, 23 September 2013. <www.sciencedaily.com/releases/2013/09/130923175926.htm>.
Rice University. (2013, September 23). New password in a heartbeat. ScienceDaily. Retrieved December 22, 2014 from www.sciencedaily.com/releases/2013/09/130923175926.htm
Rice University. "New password in a heartbeat." ScienceDaily. www.sciencedaily.com/releases/2013/09/130923175926.htm (accessed December 22, 2014).

Share This


More From ScienceDaily



More Health & Medicine News

Monday, December 22, 2014

Featured Research

from universities, journals, and other organizations


Featured Videos

from AP, Reuters, AFP, and other news services

Touch-Free Smart Phone Empowers Mobility-Impaired

Touch-Free Smart Phone Empowers Mobility-Impaired

Reuters - Innovations Video Online (Dec. 21, 2014) A touch-free phone developed in Israel enables the mobility-impaired to operate smart phones with just a movement of the head. Suzannah Butcher reports. Video provided by Reuters
Powered by NewsLook.com
Earthworms Provide Cancer-Fighting Bacteria

Earthworms Provide Cancer-Fighting Bacteria

Reuters - Innovations Video Online (Dec. 21, 2014) Polish scientists isolate bacteria from earthworm intestines which they say may be used in antibiotics and cancer treatments. Suzannah Butcher reports. Video provided by Reuters
Powered by NewsLook.com
Existing Chemical Compounds Could Revive Failing Antibiotics, Says Danish Scientist

Existing Chemical Compounds Could Revive Failing Antibiotics, Says Danish Scientist

Reuters - Innovations Video Online (Dec. 21, 2014) A team of scientists led by Danish chemist Jorn Christensen says they have isolated two chemical compounds within an existing antipsychotic medication that could be used to help a range of failing antibiotics work against killer bacterial infections, such as Tuberculosis. Jim Drury went to meet him. Video provided by Reuters
Powered by NewsLook.com
Hugging It Out Could Help You Ward Off A Cold

Hugging It Out Could Help You Ward Off A Cold

Newsy (Dec. 21, 2014) Carnegie Mellon researchers found frequent hugs can help people avoid stress-related illnesses. Video provided by Newsy
Powered by NewsLook.com

Search ScienceDaily

Number of stories in archives: 140,361

Find with keyword(s):
Enter a keyword or phrase to search ScienceDaily for related topics and research stories.

Save/Print:
Share:

Breaking News:

Strange & Offbeat Stories


Health & Medicine

Mind & Brain

Living & Well

In Other News

... from NewsDaily.com

Science News

Health News

Environment News

Technology News



Save/Print:
Share:

Free Subscriptions


Get the latest science news with ScienceDaily's free email newsletters, updated daily and weekly. Or view hourly updated newsfeeds in your RSS reader:

Get Social & Mobile


Keep up to date with the latest news from ScienceDaily via social networks and mobile apps:

Have Feedback?


Tell us what you think of ScienceDaily -- we welcome both positive and negative comments. Have any problems using the site? Questions?
Mobile: iPhone Android Web
Follow: Facebook Twitter Google+
Subscribe: RSS Feeds Email Newsletters
Latest Headlines Health & Medicine Mind & Brain Space & Time Matter & Energy Computers & Math Plants & Animals Earth & Climate Fossils & Ruins