Palo Alto Networks has introduced a new IoT security for healthcare geared to protect medical devices from unauthorised access. Using machine learning and crowd-sourced telemetry, the new solution quickly and accurately profile all devices on the network — even those never seen before.
Through ML-powered visibility, it delivers deep insights on healthcare-specific devices and vulnerabilities to help improve data security and patient safety, while meeting the needs of both IT teams and biomedical engineering teams.
“The Internet of Medical Things (IoMT) has the potential to improve healthcare, save lives, and bring massive savings. But if not properly secured, these same devices can pose huge risks,” said Anand Oswal, senior vice president and general manager, Firewall as a Platform, Palo Alto Networks. “Our vision is to give healthcare organisations complete visibility, in-depth risk analysis, and built-in prevention so they can get the maximum benefits from this transformative technology while reducing risks to patients and their data.”
According to a recent report from Unit 42, 83% of medical imaging devices are running on unsupported operating systems, making them potential avenues for attackers. Attacks on medical devices like these can potentially disrupt the quality of care and allow attackers to steal patient data.
The new solution is designed to ensure healthcare organisations can realise the benefits of IoT for patient care without sacrificing security. It even offers ML-powered policy recommendations to reduce manual effort; intrusion prevention to block exploits; sandboxing to detect and prevent IoT malware; and URL and DNS security to stop IoT attacks via the web.
One of the first healthcare organisations to implement Palo Alto’s new IoT security solutions is Valley Health Systems in order to enable vulnerability management of medical devices that connects to its IT network.
“As the initial step, we needed to identify those devices and understand how and where they connect within our infrastructure. As we looked at and explored various products, we saw great potential and benefits to identify not only biomed, but all network connected devices and systems,” said Miroslav Belote, chief information security officer, Valley Health System in New Jersey, US.
Belote said that installation, configuration, and initial device discovery was straight forward.
“Within hours of turning on the system, we began seeing results – inventory, classifications, device and device risk profiles on thousands of devices. We gained complete visibility to over 4,000 non-traditional IT devices, about 30% more devices than what we had prior. We now plan to extend our inventory, vulnerability detection, and prevention process and practice as an integral part of our ongoing efforts to protect our IT and IoT assets,” he said.
Meanwhile the new IoMT security features of the new solutions include:
- MDS2 Document Ingestion: Manufacturer Disclosure Statement for Medical Device Security documents allow medical device manufacturers to disclose the security-related features of their devices, allowing for deeper vulnerability analysis, tuned anomaly detection and specific recommended policies.
- Operational Insights: These insights give biomedical and clinical engineering teams visibility into how, when and where medical devices on their network are being used, allowing teams to optimise resource allocation, improve patient care, make capital planning decisions and reduce maintenance costs.
- Expanded IoMT Discovery: With the addition of many other medical-specific protocols App-ID now enables expanded discovery and security for unique IoMT devices and healthcare applications.