We are excited to announce that the final version of National Institute of Standards and Technology (NIST) Special Publication 1800-8, Securing Wireless Infusion Pumps, is now available.
Infusion pumps, which deliver medications to patients, are among the most network-connected medical devices. While connecting infusion pumps to clinical systems can improve healthcare delivery processes, it can also expose healthcare facilities to operational or safety risks, such as a breach of protected health records, changes to prescribed drug dosage, and disruption of healthcare services by malicious actors.
To address this issue, the cybersecurity experts at the National Cybersecurity Center of Excellence (NCCoE) worked with several infusion pump manufacturers and technology and service providers to assess the risks and produced a publicly available practice guide, NIST Special Publication (SP) 1800-8, Securing Wireless Infusion Pumps. The guide informs healthcare organizations on risks associated with deploying and operating wireless infusion pumps and how to improve the pumps' cybersecurity. The guide provides detailed guidance on asset management, threat protection, and vulnerability mitigation, and conforms to industry standards and best practices.
The final practice guide, which incorporates comments from the public and other stakeholders, is available for download in PDF or web viewing.
Stay informed about updates, send us an email at HIT_nccoe@nist.gov.