{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,7]],"date-time":"2024-09-07T20:20:43Z","timestamp":1725740443795},"reference-count":41,"publisher":"IEEE","license":[{"start":{"date-parts":[[2021,6,14]],"date-time":"2021-06-14T00:00:00Z","timestamp":1623628800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2021,6,14]],"date-time":"2021-06-14T00:00:00Z","timestamp":1623628800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2021,6,14]],"date-time":"2021-06-14T00:00:00Z","timestamp":1623628800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021,6,14]]},"DOI":"10.1109\/cybersa52016.2021.9478255","type":"proceedings-article","created":{"date-parts":[[2021,7,12]],"date-time":"2021-07-12T21:39:34Z","timestamp":1626125974000},"page":"1-9","source":"Crossref","is-referenced-by-count":3,"title":["Towards a Healthcare Cybersecurity Certification Scheme"],"prefix":"10.1109","author":[{"given":"Kristine","family":"Hovhannisyan","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Piotr","family":"Bogacki","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Consuelo Assunta","family":"Colabuono","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Domenico","family":"Lofu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Maria Vittoria","family":"Marabello","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Brady","family":"Eugene Maxwell","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"journal-title":"Common Criteria","article-title":"Common Criteria for Information Technology Security Evaluation: Part 2. Security Functional Components","year":"2017","key":"ref39"},{"journal-title":"ENISA","article-title":"Procurement Guidelines for Cybersecurity in Hospitals","year":"2020","key":"ref38"},{"journal-title":"National Electrical Manufacturers Association","article-title":"Standard: PS3.21 DICOM PS3.21 2020e-Transformations between DICOM and other Representations","year":"2020","key":"ref33"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.2147\/RMI.S179268"},{"journal-title":"Common Criteria","article-title":"Common Criteria for Information Technology Security Evaluation Part 1: Introduction and general model","year":"2017","key":"ref31"},{"journal-title":"ENISA","article-title":"ICT security certification opportunities in the healthcare sector","year":"2019","key":"ref30"},{"journal-title":"European Network of Cybersecurity centres and competence Hub for innovation and Operations","article-title":"D2.4 Inter-sector Technology Challenges and Opportunities","year":"2020","key":"ref37"},{"journal-title":"European Network of Cybersecurity centres and competence Hub for innovation and Operations","article-title":"D2.5 Multi-sector Requirements Definition and Demonstration Cases","year":"2020","key":"ref36"},{"journal-title":"European Network of Cybersecurity centres and competence Hub for innovation and Operations","article-title":"D4.2 Inter-sector Technical Cybersecurity Challenges Report","year":"2020","key":"ref35"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1109\/4233.720521"},{"journal-title":"Proc Eur Union Agency Cybersecurity (ENISA)","article-title":"Cybersecurity Certification: EUCC Candidate Scheme","year":"2020","key":"ref10"},{"journal-title":"European Network of Cybersecurity centres and competence Hub for innovation and Operations","article-title":"D2.9 ECHO Cybersecurity Certification Scheme","year":"2021","key":"ref40"},{"journal-title":"EC of the European Parliament and of the Council","article-title":"Proposal for a Regulation of the European Parliament and of the Council on ENISA (the EU Cybersecurity Agency) and repealing Regulation (EU) 526\/2013, and on Information and Communication Technology cybersecurity certification ('Cybersecurity Act&#x2019;), Expla","year":"2017","key":"ref11"},{"journal-title":"ECSO","article-title":"European Cyber Security Certification: A Meta-Scheme Approach v1.0","year":"2017","key":"ref12"},{"journal-title":"ENISA","article-title":"Challenges of security certification in emerging ICT environments","year":"2017","key":"ref13"},{"journal-title":"ECSO","article-title":"European Cyber Security Certification: Challenges ahead for the roll-out of the Cybersecurity Act","year":"2020","key":"ref14"},{"year":"0","key":"ref15","article-title":"Regulation (EU) 2016\/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95\/46\/EC (General Da"},{"year":"0","key":"ref16","article-title":"ISO\/IEC 27000 - Information technology &#x2014; Security techniques &#x2014; Information security management systems"},{"year":"0","key":"ref17","article-title":"ISO\/IEC 20000 - Information technology &#x2014; Service management"},{"year":"0","key":"ref18","article-title":"ISO\/IEC 27001- Information technology &#x2014; Security techniques &#x2014; Information security management systems &#x2014; Requirements"},{"year":"0","key":"ref19","article-title":"ISO\/IEC 27002 - Information technology &#x2014; Security techniques &#x2014; Code of practice for information security controls"},{"year":"0","key":"ref28","article-title":"IT Health Check (ITHC): supporting guidance"},{"key":"ref4","article-title":"A Patient Dies After a Ransomware Attack Hits a Hospital","author":"goodin","year":"2020","journal-title":"Wired"},{"year":"0","key":"ref27","article-title":"International Medical Device Regulators Forum (IMDRF)"},{"key":"ref3","article-title":"First death reported following a ransomware attack on a German hospital","author":"cimpanu","year":"2020","journal-title":"ZDNet"},{"journal-title":"Citrix","article-title":"CVE-2019-19781 - Vulnerability in Citrix Application Delivery Controller, Citrix Gateway, and Citrix SD-WAN WANOP appliance","year":"2019","key":"ref6"},{"journal-title":"US Department of Health and Human Services","article-title":"Health Insurance Portability and Accountability Act of 1996 (HIPAA)","year":"1996","key":"ref29"},{"journal-title":"BSI","article-title":"Aktive Ausnutzung der Citrix Schwachstelle","year":"2020","key":"ref5"},{"journal-title":"EC of the European Parliament and of the Council","article-title":"The Directive on security of network and information systems (NIS Directive)","year":"2016","key":"ref8"},{"journal-title":"Commission for the EU","article-title":"Green Paper on a European programme for critical infrastructure protection | EUR-Lex - 52005DC0576","year":"2005","key":"ref7"},{"journal-title":"UK Department of Health","article-title":"Investigation: WannaCry cyber attack and the NHS","year":"2018","key":"ref2"},{"journal-title":"EC of the European Parliament and of the Council","article-title":"Regulation (EU) 2019\/881 of the European Parliament and of the Council of 17 April 2019 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification and repealing Regulation (EU) No 52","year":"2019","key":"ref9"},{"journal-title":"Homeland Security Digital Library","article-title":"Serial No. 115-17: Bolstering the Government&#x2019;s Cybersecurity: Lessons Learned from Wannacry, Joint Hearing Before the Subcommittee on Oversight & Subcommittee on Research and Technology Committee on Science, Space, and Technology, House of Representatives","year":"2017","key":"ref1"},{"year":"0","key":"ref20","article-title":"ISO 27799 - Health informatics &#x2014; Information security management in health using ISO\/IEC 27002"},{"year":"0","key":"ref22","article-title":"IEC 62304 - Medical device software &#x2014; Software life cycle processes"},{"year":"0","key":"ref21","article-title":"ISO 9001 - Quality management systems &#x2014; Requirements"},{"year":"0","key":"ref24","article-title":"ISO 14971 - Medical devices &#x2014; Application of risk management to medical devices"},{"journal-title":"Common Criteria","article-title":"Common Criteria for Information Technology Security Evaluation: Part 3 Security assurance components","year":"2017","key":"ref41"},{"year":"0","key":"ref23","article-title":"ISO 13485 - Medical devices &#x2014; Quality management systems &#x2014; Requirements for regulatory purposes"},{"year":"1998","key":"ref26","article-title":"Directive 98\/79\/EC of the European Parliament and of the Council of 27 October 1998 on in vitro diagnostic medical devices"},{"journal-title":"European Council","article-title":"Council Directive 93\/42\/EEC of 14 June 1993 Concerning Medical Devices","year":"1993","key":"ref25"}],"event":{"name":"2021 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA)","start":{"date-parts":[[2021,6,14]]},"location":"Dublin, Ireland","end":{"date-parts":[[2021,6,18]]}},"container-title":["2021 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/9478074\/9478188\/09478255.pdf?arnumber=9478255","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,5,10]],"date-time":"2022-05-10T15:43:22Z","timestamp":1652197402000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9478255\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,6,14]]},"references-count":41,"URL":"https:\/\/doi.org\/10.1109\/cybersa52016.2021.9478255","relation":{},"subject":[],"published":{"date-parts":[[2021,6,14]]}}}