With recent disclosures surrounding medical embedded device security, hospitals are looking to in-room device manufacturers to provide additional disclosures and guaranties around medical devices and software in use at their locations.
“Hospital-technology officials say gaining access to the software running inside devices—and knowledge of its vulnerabilities—would help them build firewalls and other defenses against attacks. The Food and Drug Administration recommended in guidance proposed last October that manufacturers provide software disclosures to hospitals. Partners HealthCare, based in Boston, this year required for the first time that an unnamed device maker reveal its device software as part of their contract, said Julian Goldman, Partners’ medical director of biomedical engineering.”
Source: Rattled by Cyberattacks, Hospitals Push Device Makers to Improve Security – WSJ