How safe is your ultrasound data?
Tackling the patient data security challenge
The Healthcare industry is increasingly reliant on connected computer networks to help deliver better care, to more patients, at a lower cost. And while the benefits for care providers and their patients are clear – so is the growing technology risk. Healthcare providers face a significant threat from patient data security breaches – research shows that over a two year period, 94% of hospitals were exposed by a breach¹. Not only does this present a clear patient data security threat, but it can also significantly damage the provider held responsible – with reports suggesting that providers could lose $305 billion in patient revenue over the next five years due to cybersecurity attacks². ¹ Third Annual Benchmark Study on Patient Privacy, Ponemon Institute, December 2012 ² The $300 Billion Attack, Accenture, October 2015
Our approach to Ultrasound security
As key assets within a hospital’s network, Ultrasound devices are vulnerable to data security breaches – however most Ultrasound systems are developed only for clinical capability, not security. Not at Philips. Our portfolio of EPIQ, Affiniti, CX50, and SPARQ Ultrasound systems are built around the defense-in-depth principle and deliver an outstanding set of data security features comprising of five core layers;
-
-
Access controls
To help you control access to data on your Philips Ultrasound systems, you can choose from three access control levels – No Restrictions, Locked Patient Data, and Complete System Lock.
You are about to visit a Philips global content page
Continue -
Operating system hardening
Operating system (OS) hardening involves identifying all unnecessary services and functions that are included within the operating system and disabling those not required by the ultrasound systems. OS hardening reduces the attack surface by eliminating those services that may become vulnerable over time.
You are about to visit a Philips global content page
Continue -
Firewall
Strict firewall policies that block all unnecessary ports to inhibit communication with unauthorized computers, limiting the attack profile that a malicious hacker may try to exploit.
You are about to visit a Philips global content page
Continue -
Malware protection
Philips has implemented the McAfee Application Control solution. This solution, known as whitelisting, protects your systems from malware by allowing only known and trusted applications and libraries to function. Because whitelisting doesn’t require constant updating like traditional AV software, it requires less maintenance and fewer updates.
You are about to visit a Philips global content page
Continue -
Patient data encryption
Enables you to encrypt Ultrasound hard drive data according to your facilities’ specific requirements, as well as giving you the ability to encrypt your patient data in transit, dependent on the functionality of your PACS system.
You are about to visit a Philips global content page
Continue
Pioneering ultrasound security strategy
When it comes to medical device security – Philips is recognized as an industry leader. We understand the importance of securing your medical devices and protecting your patient data. Together we can maintain a secure environment by remaining vigilant and identifying the ever-changing cybersecurity threat landscape. We are committed to meeting the needs and requirements of our customers. Defense layers can include security policies, procedures, access controls, technical measures, training, and risk assessments which are combined to help protect you against hackers, malware, and prevent unauthorized access.
Insights to protect your Ultrasound data
We recognize that as a Healthcare professional it is not uncommon to feel vulnerable to data threats. To keep up-to-date with the latest developments that can help your facility to operate a robust, sustainable approach to security – download our best-practice materials here:
