Call 01 40 02 03 05

Currency:
EUR
 
 
English
 
All
 
  • Home /
  • IEEE 11073-40101:2020

IEEE 11073-40101:2020

IEEE 11073-40101:2020

IEEE Standard - Health informatics--Device interoperability Part 40101: Foundational—Cybersecurity—Processes for vulnerability assessment

Availability: In stock

€70.00
Alert me in case of modifications on this product

Related

Name Support Language Availability Edition date Price
IEEE 11073-40101:2020
PDF
English
Active
1/8/2021
€70.00

IEEE 11073-40101:2020
Paper
English
Active
1/8/2021
€87.00

Details

New IEEE Standard - Active.
For Personal Health Devices (PHDs) and Point-of-Care Devices (PoCDs), an iterative, systematic, scalable, and auditable approach to identification of cybersecurity vulnerabilities and estimation of risk is defined by this standard. The standard presents one approach to iterative vulnerability assessment that uses the Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, and Elevation of Privilege (STRIDE) classification scheme and the embedded Common Vulnerability Scoring System (eCVSS). The assessment includes system context, system decomposition, pre-mitigation scoring, mitigation, and post-mitigation scoring and iterates until the remaining vulnerabilities are reduced to an acceptable level of risk.

Within the context of secure plug-and-play interoperability, cybersecurity is the process and capability of preventing unauthorized access or modification, misuse, denial of use, or the unauthorized use of information that is stored on, accessed from, or transferred to and from a PHD/PoCD. The process part of cybersecurity is risk analysis of use cases specific to a PHD/PoCD.
For PHDs/PoCDs, this standard defines an iterative, systematic, scalable, and auditable approach to identification of cybersecurity vulnerabilities and estimation of risk. This iterative vulnerability assessment uses the Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, and Elevation of Privilege (STRIDE) classification scheme and the embedded Common Vulnerability Scoring System (eCVSS). The assessment includes system context, system decomposition, pre-mitigation scoring, mitigation, and post-mitigation scoring and iterates until the remaining vulnerabilities are reduced to an acceptable level of risk.
The purpose of this document is to define a common approach to cybersecurity assessment in PHDs/PoCDs and define an iterative, systematic, scalable, and auditable vulnerability assessment appropriate for use in the design of PHDs/PoCDs..

Additional Info

Author Institute of Electrical and Electronics Engineers (IEEE)
Committee IEEE 11073 Standards Committee
Published by IEEE
Document type Standard
Edition
EAN ISBN 978-1-5044-7086-5
ICS 35.240.80 : IT applications in health care technology
35.030 : IT Security
Number of pages 50
Keyword IEEE 11073-40101-2020
Order form

NORMADOC - Your purchasing center for standards regulations & technical and legal books

Useful information
Customer service
logo Normadoc certifié ISO 9001

© 2023 Normadoc . Tous droits réservés - All Rights Reserved.

To top
Cookie Preferences
Your Privacy

When you visit any website, it may store or retrieve information on your browser, usually in the form of cookies. This information does not usually identify you, but it does help companies to learn how their users are interacting with the site.

We respect your right to privacy, so you can choose not to accept some of these cookies. Choose from the different category headers to find out more and change your default settings.

Strictly Necessary Cookies
These cookies are essential for the website to function and they cannot be turned off. They are usually only set in response to actions made by you on our site, such as logging in, adding items to your cart or filling in forms. If you browse our website, you accept these cookies.
Cookies are used by
  • Magento Store