Modern medical products constantly push new features for unprecedented fidelity, interoperability and dependable patient management. From IoT devices to advanced imaging to case management and patient monitoring. medical devices and software operate with one-another in real-time more than ever. As sophisticated device manufacturer’s are aware, these trends also increase the system’s attack surface.
This paper outlines an approach for testing the security of IoT medical devices against a range threats including vulnerabilities in the software and firmware of the device and looking for potential exploit paths from the services it interacts with.