The medical IoT is set to transform healthcare through smart medical devices. However, their success is in jeopardy if cybersecurity concerns are not addressed immediately. ABI Research believes that the millions of connected medical devices introduce dangerous new threat vectors into the healthcare IT infrastructure, and will seriously undermine patient safety and effective care delivery if left unchecked.
“We estimate spending by healthcare providers and OEMs on healthcare cybersecurity to reach $5.5 billion by 2016,” says Michela Menting, Research Director at ABI Research. “However, only $390 million of that will be dedicated to securing medical devices. Healthcare stakeholders have to understand that there is a new hostile environment that will emerge around networked medical devices and that threat actors have multiple levels of skills and diverging motivations for attacking the medical IoT.”
The money spent on securing medical devices will primarily be due to OEMs embedding security in the hardware, reviewing, analyzing, pen testing, developing patches, and performing OTA updates, among other functions. The rest of the expenditure will focus on data protection. But medical devices suffer from numerous vulnerabilities, and many often compound several critical vulnerabilities: code errors in software, use of hardcoded passwords, disabling of firewalls, lack of authentication mechanisms, unencrypted communications, among many other issues.
Protecting devices requires addressing technical issues, healthcare delivery, and business challenges. To do this, collaboration across the various stakeholder silos is necessary. The industry, however, is at the beginning stages of the discussion. Globally, the efforts are poor, and the U.S. is the only country currently putting significant energies into the matter.
However, awareness is growing, which will push spending on devices to triple globally by 2021, resulting primarily from dynamic U.S. public and private efforts in the space. A few companies are already fully embracing medical device cybersecurity, including Battelle, Coalfire, Dräger, Extreme Networks, Sensato, Synopsys, UL, and WhiteScope.
“Investment in medical device cybersecurity is critical in order to deliver the full promise of next-generation healthcare technology,” concludes Menting. “OEMs and healthcare providers taking part in the discussion today will be the pioneers forming the foundation of future cybersecurity for medical devices.”
These findings are from ABI Research’s Securing Medical Devices. This report is part of the company’s Digital Security sector, which includes research, data, and analyst insights.
About ABI Research
ABI Research is a global technology intelligence firm uniquely positioned at the intersection of technology solution providers and end-market companies. We serve as the bridge that seamlessly connects these two segments by providing exclusive research and expert guidance to drive successful technology implementations and deliver strategies proven to attract and retain customers.
ABI Research 是一家全球性的技术情报公司,拥有得天独厚的优势,充当终端市场公司和技术解决方案提供商之间的桥梁,通过提供独家研究和专业性指导,推动成功的技术实施和提供经证明可吸引和留住客户的战略,无缝连接这两大主体。
For more information about ABI Research’s services, contact us at +1.516.624.2500 in the Americas, +44.203.326.0140 in Europe, +65.6592.0290 in Asia-Pacific, or visit www.abiresearch.com.
Americas: +1.516.624.2542
Europe: +44.(0).203.326.0142
Asia: +65 6950.5670