July 18, 2021

CrossPost: IoT Device Embedded Security/AV/Control Help – Can’t find a compatible solution.

Hey All,

Having a hard time finding the right solution for a client. If anyone experienced a similar challenge, please let me know.

Client is a manufacturer of medical devices. They are currently developing the next generation of their patient monitoring devices. The devices must be NIST 800-53 compliant and will have PII/PHI on them.

The devices will be run attached to patients by analog and digital measurement devices. They will be connected to a network by Ethernet, Wifi, Bluetooth, or not connected in faraday-cadge room. It’s imperative the Security Application on the device scan or compromise the normal function of the device while it’s in use as human lives depend on this device.

Compatibility Requirements:

· ARM64 processor Architecture

· Linux – Yocto 3.0 Zeus

​

Functionality Requirements

· Embedded Security product – Pre-boot (Strongly desired)

· Lowest process intensity possible

· System Lockdown via application fingerprinting/Zero Trust/Process Whitelisting-Control

· Integrity checks of Filesystem (File Integrity Monitoring lets you monitor files, folders, registry keys, or registry values for changes.)

· Ability to add exceptions from scanning when device is performing certain functions

· Ability to Scan .CFG files

· Regular Signature updates pushed over private subnet.

​

Attack Vectors/State

· Wifi Enabled

· Bluetooth Enabled

· Normally ethernet to dedicated monitoring subnet.

· There are a variety of I/O ports.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.