Anna Forrester
The Institute of Electrical and Electronics Engineers has released new guidelines on baseline security requirements for software development and production of medical devices.
IEEE said Monday the “Building Code for Medical Device Software Security” document authored by Tom Haigh and Carl Landwehr provides guidance on addressing security vulnerabilities at the point of origin.
“[The] elements contained in [the document] are intended as the beginning of a model code for software security for the medical device industry,” said Landwehr, an IEEE fellow and research scientist at George Washington University’s Cyber Security Policy and Research Institute.
“This is just a starting point that developers can use to rule out the most commonly exploited classes of software vulnerabilities during the implementation phase.”
According to IEEE, the document is part of its Future Directions Committee’s cybersecurity initiative toward providing tools and guidance on computer security education, software assurance engineering and secure software coding.
