Security measure against hacking implantable medical device

Scientists have finally worked out a “cloaking” device or a shield for existing Implantable Cardioverter Defibrillator (ICD) devices, following a report detailing weaknesses in the communications mechanism that can lead to leak of patient information and risk of loss of life. ICDs are similar to pacemakers and used by heart patients to slow down the heart.

Earlier this year in May, a team of researchers from were able to exploit a weakness in the wireless communications protocol used by ICDs operating in the 175kHz frequency range. The research team was able to intercept the wireless signals used to communicate with the ICD and reprogram the signals, and even retrieve patient information. The complete research can be found here (pdf).

The cloaking device, invented by Dr Tamara Denning, a computer scientist at the University of Washington in Seattle, is designed to resist any instructions that come from anyone other than the doctor. The device itself is wearable like a wrist watch and technical working details have not been released.

Is this really a practical solution? Not everyone thinks so:

However, Dr William Maisel of Harvard University, who led the pacemaker hacking experiment earlier this year, said the cloaker was unrealistic.

In an emergency, a cloaker could be hidden in clothing and be hard for doctors to find.

‘You’re asking hundreds of thousands or millions of people to wear something every day for a theoretical risk,’ he said.