Skip to main content

ISO/IEEE 11073-40101:2022

Current Date published:

Health informatics — Device interoperability — Part 40101: Foundational — Cybersecurity — Processes for vulnerability assessment

Within the context of secure plug-and-play interoperability, cybersecurity is the process and capability of preventing unauthorized access or modification, misuse, denial of use, or the unauthorized use of information that is stored on, accessed from, or transferred to and from a PHD/PoCD. The process part of cybersecurity is risk analysis of use cases specific to a PHD/PoCD.

For PHDs/PoCDs, this standard defines an iterative, systematic, scalable, and auditable approach to identification of cybersecurity vulnerabilities and estimation of risk. This iterative vulnerability assessment uses the Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, and Elevation of Privilege (STRIDE) classification scheme and the embedded Common Vulnerability Scoring System (eCVSS). The assessment includes system context, system decomposition, pre-mitigation scoring, mitigation, and post-mitigation scoring and iterates until the remaining vulnerabilities are reduced to an acceptable level of risk.

Get this standard Prices exclude GST
PDF ( Single user document)
$248.54 NZD
HardCopy
$248.54 NZD
Networkable PDF
Price varies
Preview only close
Prev {{ page }}/ {{ numPages }} Next
Preview only close
Prev {{ page }}/ {{ numPages }} Next
Pages: 38

Keep me up-to-date

Sign up to receive updates when there are changes to this standard

Related Information

Similar Standards

  • BS EN 1068:2005

    Health informatics. Registration of coding systems

  • BS EN 12251:2004

    Health informatics. Secure user identification for health care. Management and security of authentication by passwords

  • BS EN 12264:2005

    Health informatics. Categorial structures for systems of concepts

  • BS EN 12435:2006

    Health informatics. Expression of results of measurements in health sciences

Preview only close
Prev {{ page }}/ {{ numPages }} Next
Preview only close
Prev {{ page }}/ {{ numPages }} Next
Pages: 38

ISO/IEEE 11073-40101:2022

Get this standard Prices exclude GST
PDF ( Single user document)
$248.54 NZD
HardCopy
$248.54 NZD
Networkable PDF
Price varies

Request to add this standard to your subscription

ISO/IEEE 11073-40101:2022

Price varies
Online library subscription

Click "Send request for subscription" to request for your Account Administrator to add this standard to your subscripiton.

Cancel