Skip to main content
Engineering LibreTexts

References

  1. Last updated
  2. Save as PDF
  • Page ID
    85375

    • \( \newcommand{\vecs}[1]{\overset { \scriptstyle \rightharpoonup} {\mathbf{#1}} } \) \( \newcommand{\vecd}[1]{\overset{-\!-\!\rightharpoonup}{\vphantom{a}\smash {#1}}} \)\(\newcommand{\id}{\mathrm{id}}\) \( \newcommand{\Span}{\mathrm{span}}\) \( \newcommand{\kernel}{\mathrm{null}\,}\) \( \newcommand{\range}{\mathrm{range}\,}\) \( \newcommand{\RealPart}{\mathrm{Re}}\) \( \newcommand{\ImaginaryPart}{\mathrm{Im}}\) \( \newcommand{\Argument}{\mathrm{Arg}}\) \( \newcommand{\norm}[1]{\| #1 \|}\) \( \newcommand{\inner}[2]{\langle #1, #2 \rangle}\) \( \newcommand{\Span}{\mathrm{span}}\) \(\newcommand{\id}{\mathrm{id}}\) \( \newcommand{\Span}{\mathrm{span}}\) \( \newcommand{\kernel}{\mathrm{null}\,}\) \( \newcommand{\range}{\mathrm{range}\,}\) \( \newcommand{\RealPart}{\mathrm{Re}}\) \( \newcommand{\ImaginaryPart}{\mathrm{Im}}\) \( \newcommand{\Argument}{\mathrm{Arg}}\) \( \newcommand{\norm}[1]{\| #1 \|}\) \( \newcommand{\inner}[2]{\langle #1, #2 \rangle}\) \( \newcommand{\Span}{\mathrm{span}}\)\(\newcommand{\AA}{\unicode[.8,0]{x212B}}\)

    Information Security (IS)

    1. Framework for Improving Critical Infrastructure Cybersecurity. (2018). US Department of Commerce, National Institute of Standards and Technology.
    2. Health Insurance Portability and Accountability Act of 1996. Pub. L. 104-191. Stat. 1936. HIPAA. Retrieved: https://www.govinfo.gov/content/pkg/...104publ191.pdf
    3. Health Information Technology for Economic and Clinical Health Act. Pub. L. 111-5. Stat. 13001. (2019). HITECH. Retrieved: https://www.hhs.gov/sites/default/fi.../hitechact.pdf
    4. Minimum Security Requirements for Federal Information and Information Systems. Federal Information Processing Standards Publication (FIPS) 200. (2006). US Department of Commerce, National Institute of Standards and Technology.
    5. NIST Special Publication 800-53r5: Security and Privacy Controls for Information Systems and Organizations. (2017). US Department of Commerce, National Institute of Standards and Technology.
    6. Ross, R., Pillitteri, V., Dempsey, K., Riddle, M. and Guissanie, G. (2019). NIST Special Publication 800-171r2: Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations. US Department of Commerce, National Institute of Standards and Technology.
    7. Ross, R., Pillitteri, V., Guissanie, G., Wagner, R., Graubart, R. and Bodeau, D., (2020). NIST Special Publication 172: Enhanced Security Requirements for Protecting Controlled Unclassified Information. A Supplement to NIST Special Publication 800-171. US Department of Commerce, National Institute of Standards and Technology.
    8. Ross, R., Pillitteri, V., Guissanie, G., Wagner, R., Graubart, R. and Bodeau, D., (2020). NIST Special Publication 172A: Assessing Enhanced Security Requirements for Controlled Unclassified Information. US Department of Commerce, National Institute of Standards and Technology.
    9. Federal Information Processing Standards Publication (FIPS) 199. Standards for Security Categorization of Federal Information and Information Systems. (2004). US Department of Commerce, National Institute of Standards and Technology.

    Operational Security (OS)

    1. Content of Premarket Submissions for Management of Cybersecurity in Medical Devices. Guidance for Industry and Food and Drug Administration Staff (First Draft). (2014). Department of Health and Human Services. Food and Drug Administration, 3
    2. Cybersecurity Safe Harbor provision. Amendment to Health Information Technology for Economic and Clinical Health Act (HITECH), (2021). 42 USC 17931 §13412. Public Law 116-321.
    3. FDA Should Expand Its Consideration of Information Security for Certain Types of Devices. (2012). General Accounting Office. GAO-12-816 Highlights, Medical Devices.
    4. Framework for Improving Critical Infrastructure Cybersecurity. (2018). US Department of Commerce. National Institute of Standards and Technology.
    5. Health Information Technology for Economic and Clinical Health Act. Pub. L. 111-5. Stat. 13001. (2009). HITECH. Retrieved from: https://www.hhs.gov/sites/default/fi.../hitechact.pdf
    6. Health Insurance Portability and Accountability Act of 1996. (1996). Pub. L. 104-191. Stat. 1936. HIPAA. Retrieved from: https://www.govinfo.gov/content/pkg/...104publ191.pdf
    7. Internet of Things Cybersecurity Improvement Act of 2020. H.R. 1668. (2020). Public Law 116-207. United States Congress.
    8. Medical Device Cybersecurity Report: Advancing Coordinated Vulnerability Disclosure. Medical Device Innovation Consortium. (2018). Retrieved from: https://mdic.org/event/mdicx-cyberse...ty-disclosure/
    9. Medical Device Cybersecurity: What You need to Know. (2020). Retrieved from: https://www.fda.gov/consumers/consum...-you-need-know
    10. Medical Device Safety Action Plan: Protecting Patients, Promoting Public Health. (2018). U.S. Food and Drug Administration. FDA-2018-N-1315.
    11. NIST Special Publication (SP) 800-213: IoT Device Cybersecurity for the Federal Government: Establishing IoT Device Cybersecurity Requirements. (2021). US Department of Commerce. National Institute of Standards and Technology, 11.
    12. NIST Special Publication (SP) 800-213A: IoT Device Cybersecurity for the Federal Government: IoT Device Cybersecurity Requirement Catalog. (2021). US Department of Commerce. National Institute of Standards and Technology.
    13. NISTIR 8228: Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks. (2019). US Department of Commerce. National Institute of Standards and Technology.
    14. NISTIR 8259: Foundational Cybersecurity Activities for IoT Device Manufacturers. (2020). US Department of Commerce. National Institute of Standards and Technology.
    15. NISTIR 8259A: IoT Device Cybersecurity Capability Core Baseline. (2020). US Department of Commerce. National Institute of Standards and Technology.
    16. NISTIR 8259B: IoT Non-technical and Supporting Capability Core Baseline. (2020). National Institute of Standards and Technology.
    17. NISTIR 8259C: Creating a Profile of the IoT Core Baseline and Non-Technical Baseline. (2020). National Institute of Standards and Technology.
    18. NISTIR 8259D: Profile using the IoT Core Baseline and Non-Technical Baseline for the Federal Government. (2020). National Institute of Standards and Technology.
    19. Postmarket Management of Cybersecurity in Medical Devices. Guidance for Industry and Food and Drug Administration Staff. (2016). Department of Health and Human Services. Food and Drug Administration, 4.
    20. NIST Special Publication 800-53r5. Security and Privacy Controls for Information Systems and Organizations. (2017). US Department of Commerce. National Institute of Standards and Technology.
    21. Fact Sheet: The FDA’s Role in Medical Device Cybersecurity, Dispelling Myths and Understanding Facts. (2019). Department of Health and Human Services. Food and Drug Administration. Retrieved from: https://www.fda.gov/files/medical%20...fact-sheet.pdf
    1. Back to top
    • Was this article helpful?

    Recommended articles

    1. Article type
      Section or Page
      Author
      Thomas P. Dover
      License
      CC BY-NC
      License Version
      4.0
      Show TOC
      no
    2. Tags
      This page has no tags.