—In this paper we derive an engineering specification for functionality, security, and implementation demands for RFID Implantable Medical Devices (IMD) requiring medical data storage and wireless communication. We illustrate the specification by sketching a secure communication protocol for RFID IMDs. The specification follows from our requirements analysis of application characteristics, legal restrictions, security requirements and ethical concerns of IMDs. In our analysis we have recognized three main types of IMD applications: identification, financial and medical/emergency. The hardware implementation constraints and security level requirements of IMD systems differ from mainstream applications of RFID. The presented specification that considers the special operating environment, delicate use cases and safety-critical functionality of IMD systems is aimed to be a conceptual platform for designing robust security schemes and long-term functional and physical reliability.
—RFID implant systems, security and privacy, hardware limitations, ethical concerns, lightweight cryptography.
Sanaz Rahimi Moosavi is with Department of Information Technology, University of Turku, 20014 Turku, Finland (e-mail: firstname.lastname@example.org).
Antti Hakkala is with Department of Information Technology and Turku Centre for Computer Science TUCS, University of Turku, 20014 Turku, Finland (e-mail: email@example.com).
Johanna Isoaho, Seppo Virtanen, and Jouni Isoaho are with Department of Information Technology, University of Turku, 20014 Turku, Finland (email: firstname.lastname@example.org, email@example.com, firstname.lastname@example.org).
Cite:Sanaz Rahimi Moosavi, Antti Hakkala, Johanna Isoaho, Seppo Virtanen, and Jouni Isoaho, "Specification Analysis for Secure RFID Implant Systems," International Journal of Computer Theory and Engineering vol. 6, no. 2, pp. 177-188, 2014.