Presentation is loading. Please wait.

Presentation is loading. Please wait.

Xiali Hei, Xiaojiang Du, Shan Lin Temple University

Published byBarnaby Blake Modified over 8 years ago

Similar presentations

Presentation on theme: "Xiali Hei, Xiaojiang Du, Shan Lin Temple University"— Presentation transcript:

1 Xiali Hei, Xiaojiang Du, Shan Lin Temple University
PIPAC: Patient Infusion Pattern based Access Control Scheme for Wireless Insulin Pump System Xiali Hei, Xiaojiang Du, Shan Lin Temple University Insup Lee University of Pennsylvania

2 §Agenda Background Motivation Overview of our solution Details Results
Conclusions Temple University & University of Pennsylvania

3 Background: attacks in labs
In 2009, Kevin Fu et al. launched a replay attack using USRP board + software radio. In 2011, Jack and Radcliffe demonstrated attacks targeted to wireless insulin pumps, respectively. Jack can deliver a lethal dose 300u to a diabetes. Radcliffe can make the meter get wrong blood glucose numbers

4 §Motivation In USA, there will be 580,000 diabetics with pumps by 2015 [1,2,3]. Protecting the patients are very important. Design secure schemes to calculate the safe dose range in real time. Mitigate the attacks.

5 Purpose and assumptions (1)
The wireless links in the system is not encrypted. So attackers can easily compromise them. Insulin pump users can change the pump settings using the Carelink Pro software in a computing device, such as a laptop. The new settings are uploaded to the pump using the Carelink USB via wireless link 5. In this case, attackers may use customized software and a wireless sniffer to obtain the serial number of all pumps within 300 feet and can compromise wireless link 5 to change the settings of the pump without being notice.

6 A real time insulin pump system

7 Purpose and assumptions (2)
Using this security flaw, an attacker can disable the alarms of the pump, change the maximum allowable dosage of the pump. deliver a fatal dose to the insulin pump user. We focus on the attacks that compromised wireless link 5. Specifically, we focus on two types of attacks: 1) Single acute overdose. 2) Chronic overdose.

8 System model The system has basic authentication scheme, however, it cannot defend against the overdose attack Bolus dose: to cover food eaten or to correct a high BG level. Basal dose: pumped continuously at an adjustable basal rate to deliver insulin needed between meals and at night.

9 Infusion record analysis
Take efforts to get the useful data from the raw data on devices Through infusion record analysis, we found that a patient has specific infusion dosage patterns. The features include: Time, Estimate Bolus, Target High BG, Target Low BG, Carb Ratio, Insulin Sensitivity, Carb Input, BG Input, Correction Estimate, Food Estimate, Active Insulin, Daily Total Insulin, Basal Pattern Name, Index, Basal Rate, and Start Time. All of these features are expected to have a strong correlation with the timestamps of the records.

10 Temple University & University of Pennsylvania

11 Temple University & University of Pennsylvania

12 Temple University & University of Pennsylvania

13 Safety Range Definition
According to the definition of MSE (mean squared errors) and SCC (squared correlation coefficient), we define the safety range SR for bolus dosage and basal rate as follows. Temple University & University of Pennsylvania

14

15 Temple University & University of Pennsylvania

16 Temple University & University of Pennsylvania

17 Results Temple University & University of Pennsylvania

18 Results Temple University & University of Pennsylvania

19 §Performance analysis
Safety analysis: the cumulative dosage error in one day < 1u. Overhead analysis: less than 0.5ms to finish the detection. Security analysis: can defend against the two attacks and adjust during emergencies automatically. Temple University & University of Pennsylvania

20 §Conclusions We proposed a PIP based access control scheme that can defend against the single acute overdose and chronic overdose attacks. It is the first scheme to defend against such attacks. Our scheme leverages the patient dosage history to generate two SVMs. Then we determined the safety ranges for each input vector. We employed real patient data to test our scheme, and the results show that our scheme works well. Our scheme can be generalized to other infusion systems as well. Temple University & University of Pennsylvania

21 Questions ? Temple University & University of Pennsylvania

Download ppt "Xiali Hei, Xiaojiang Du, Shan Lin Temple University"

Similar presentations

An Alternative Approach for Enhancing Security of WMANs using Physical Layer Encryption By Arpan Pal Wireless Group Center of Excellence for Embedded Systems.

An Alternative Approach for Enhancing Security of WMANs using Physical Layer Encryption By Arpan Pal Wireless Group Center of Excellence for Embedded Systems.
© 2004, John Walsh, PA, CDE Intelligent Devices A Smart Pen demonstrates possibilities for intelligent diabetes devices by John Walsh, P.A., C.D.E. Smart.

© 2004, John Walsh, PA, CDE Intelligent Devices A Smart Pen demonstrates possibilities for intelligent diabetes devices by John Walsh, P.A., C.D.E. Smart.
Advanced Pumping. Objectives: Identify situations to utilize temporary basal rate in pump therapy patients. Identify examples of when to use combination.

Advanced Pumping. Objectives: Identify situations to utilize temporary basal rate in pump therapy patients. Identify examples of when to use combination.
1-800-DIABETES www.diabetes.org DIABETES CARE TASKS AT SCHOOL: What Key Personnel Need to Know DIABETES CARE TASKS AT SCHOOL: What Key Personnel Need to.

1-800-DIABETES DIABETES CARE TASKS AT SCHOOL: What Key Personnel Need to Know DIABETES CARE TASKS AT SCHOOL: What Key Personnel Need to.
 Objectives ◦ Show video explaining fixed carb ratio insulin therapy. ◦ Show video explaining intensive insulin therapy. ◦ Show video explaining pump.

 Objectives ◦ Show video explaining fixed carb ratio insulin therapy. ◦ Show video explaining intensive insulin therapy. ◦ Show video explaining pump.
Introducing The SHINE Trial (Stroke Hyperglycemia Insulin Network Effort) An Overview for Clinical Nurses NIH-NINDS U01 NSO69498.

Introducing The SHINE Trial (Stroke Hyperglycemia Insulin Network Effort) An Overview for Clinical Nurses NIH-NINDS U01 NSO69498.
Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7.3 Secure and Resilient Location Discovery in Wireless.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7.3 Secure and Resilient Location Discovery in Wireless.
GRS: The Green, Reliability, and Security of Emerging Machine to Machine Communications Rongxing Lu, Xu Li, Xiaohui Liang, Xuemin (Sherman) Shen, and Xiaodong.

GRS: The Green, Reliability, and Security of Emerging Machine to Machine Communications Rongxing Lu, Xu Li, Xiaohui Liang, Xuemin (Sherman) Shen, and Xiaodong.
Diabetes Care Tasks at School: What Key Personnel Need to Know Diabetes Care Tasks at School: What Key Personnel Need to Know INSULIN ADMINISTRATION.

Diabetes Care Tasks at School: What Key Personnel Need to Know Diabetes Care Tasks at School: What Key Personnel Need to Know INSULIN ADMINISTRATION.
Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig Carnegie Mellon University Message-In-a-Bottle: User-Friendly and Secure Cryptographic Key Deployment.

Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig Carnegie Mellon University Message-In-a-Bottle: User-Friendly and Secure Cryptographic Key Deployment.
KAIS T Message-In-a-Bottle: User-Friendly and Secure Key Deployment for Sensor Nodes Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig(CMU), Sensys07 2007.

KAIS T Message-In-a-Bottle: User-Friendly and Secure Key Deployment for Sensor Nodes Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig(CMU), Sensys
Queensland University of Technology CRICOS No. 00213J Mitigating Sandwich Attacks against a Secure Key Management in WSNs for PCS/SCADA Hani Alzaid, DongGook.

Queensland University of Technology CRICOS No J Mitigating Sandwich Attacks against a Secure Key Management in WSNs for PCS/SCADA Hani Alzaid, DongGook.
Quick Pump Facts o Constantly provides insulin o Pager-sized “mini-computer” worn outside the body o Pump itself is attached to your body by a small cannula.

Quick Pump Facts o Constantly provides insulin o Pager-sized “mini-computer” worn outside the body o Pump itself is attached to your body by a small cannula.
Continuous Glucose Monitoring. Diabetes Management Evolution Insulin Delivery Glucose Monitoring 2000 First CGM system 2006 Paradigm REAL- Time, combining.

Continuous Glucose Monitoring. Diabetes Management Evolution Insulin Delivery Glucose Monitoring 2000 First CGM system 2006 Paradigm REAL- Time, combining.
Putting Pump Policies Into Practice- Case Study Conference Call Elizabeth Blair, ANP-BC,CDE Joyce Lekarcyk, RN, CDE.

Putting Pump Policies Into Practice- Case Study Conference Call Elizabeth Blair, ANP-BC,CDE Joyce Lekarcyk, RN, CDE.
AGIL Active Glucose/InsuLin Control System Design Team: Daniel Hewlett Michael Wires Concept: Provide diabetics with continuous blood glucose monitoring.

AGIL Active Glucose/InsuLin Control System Design Team: Daniel Hewlett Michael Wires Concept: Provide diabetics with continuous blood glucose monitoring.
On Effective Testing of Health Care Simulation Software Christian Murphy, M.S. Raunak, Andrew King, Sanjian Chen, Christopher Imbriano, Gail Kaiser, Insup.

On Effective Testing of Health Care Simulation Software Christian Murphy, M.S. Raunak, Andrew King, Sanjian Chen, Christopher Imbriano, Gail Kaiser, Insup.
Data Mining: Discovering Information From Bio-Data Present by: Hongli Li & Nianya Liu University of Massachusetts Lowell.

Data Mining: Discovering Information From Bio-Data Present by: Hongli Li & Nianya Liu University of Massachusetts Lowell.
©Ian Sommerville 2004Software Engineering, 7th edition. Insulin Pump Slide 1 An automated insulin pump.

©Ian Sommerville 2004Software Engineering, 7th edition. Insulin Pump Slide 1 An automated insulin pump.
©Ian Sommerville 2004Software Engineering, 7th edition. Insulin Pump Slide 1 The portable insulin pump Developing a dependability specification for the.

©Ian Sommerville 2004Software Engineering, 7th edition. Insulin Pump Slide 1 The portable insulin pump Developing a dependability specification for the.

Similar presentations

Ads by Google