42TEK » Presentations List

June 13, 2023: presented Cybersecurity for Industrial Control Systems with Critical Infrastructure Security Agency (CISA) presentation by Mario Garcia of US Dept. of Homeland Security at IEEE Consultants’ Network of Silicon Valley (CNSV).
September 8-11, 2022: IEEE Global Humanitarian Conference (GHTC) at Santa Clara University. On behalf of the IEEE Consultants’ Network of Silicon Valley (CNSV), coordinated arrangements for the IEEE MOVE Outreach truck to be onsite for the conference and for a Workshop, a Keynote, and sessions including:
- Friday, September 9th, 2022 Introducing the West Coast IEEE MOVE Truck — Keynote and Demonstration. Tim Lee, IEEE Region 6 Director. MOVE Community Outreach, an IEEE-USA Initiative, is an emergency relief program committed to assisting victims of natural disasters with short-term communications, computer, and power solutions. These temporary emergency relief provisions help those affected stay connected and make sure they can access the help they need. Services include phone charging, internet & communications support, and lighting to disaster victims.

- Friday, Sept 9th, 6:00-9:00 PM: Communications, Computing, and Power during Disaster Response. A panel discussion among representatives from organizations involved with emergency response and disaster recovery.

August 10, 2021: HIMSS21 (Health Information Management Systems Society) conference in Las Vegas. Presented Cybersecurity in a Complex Healthcare Ecosystem with Mitch Parker of Indiana University Health. Managing cybersecurity risk for supply chains with multiple vendors is complicated. Each vendor is clearly responsible for its own system, but who minds the overall end-to-end concerns? These concerns affect both products, such as medical devices, and services, such as telehealth platforms. Special attention was given to hospitals and remote patient monitoring.
May 19, 2021: Medical Device Software Development Summit – Remote Patient Monitoring Ecosystem Security. Discussed RPM as a system of systems, understanding supply chain risk, and making sure RPM ecosystem partners are secure. (Also see paper at https://42tek.com/RPM-system-cybersecurity.pdf)
December 8, 2020: (ISC)² Silicon Valley Chapter webinar – Cybersecurity and COVID-19 Vaccines. Discussed the attack surface of the overall vaccine development and delivery system and some of the news items that have appeared on the subject of cybersecurity relative to these efforts. Topics addressed included intellectual property, manufacturing systems, and supply chains. Explained Industrial Control Systems cybersecurity concerns in manufacturing. Noted the potential for misinformation and disinformation that could discourage people from being vaccinated. Slides available at https://42tek.com/COVID-19_VaccinesCybersecuriy-Slides.pdf.
May 12, 2020: HIMSS ePatient 2020 Webinar – Cybersecurity & the Future of Remote Patient Monitoring. An updated and shorter online version of my well-received December conference workshop. Factors driving increased adoption of RPM. RPM as a “system of systems” requiring coordination among stakeholders. Cybersecurity best practices. A version of the slides is posted at https://42tek.com/RPM_Cybersecurity.pdf. Video at https://www.youtube.com/watch?v=iZ-QUo8XTPA&feature=youtu.be
December 10, 2019: Cybersecurity and the Future of Remote Patient Monitoring workshop conducted at the Second Connected Medical Devices Cybersecurity Summit in San Francisco. See https://connected-devices-summit.com.
- Several trends are driving increased interest and adoption for using network-connected medical devices outside the clinical environment to diagnose, monitor, and treat patients.Healthcare delivery organizations need guidance on how to set up and support users who may not know how to make sure their home networks and mobile phones are secure and to make sure network-connected medical devices outside the clinical environment are
  • integrated and installed securely
  • maintained securely with updates and patches
  • monitored for indications of abnormal behavior that may indicate device failure or compromiseThis workshop explored similarities and differences between network-connected medical devices in clinical settings versus residential environments, relative cybersecurity challenges, and best practices throughout the lifecycle of remote devices.
August 27, 2019: Make Sure You Know How to Swim (Hack) Before You Dive into the Medical Device Cybersecurity Sea presented at Bay Area MedTech – Medical Technologies Group in San Francisco.
- Building a device that will connect to the Internet without addressing cybersecurity is like swimming in the deep end without ever having taken swimming lessons.
- “Somebody Else’s Problem”, an effectively-magical field that obscures things you think aren’t relevant to you, such that even though you see them (or hear them or read them) you don’t actually *notice*, and quickly forget. (Douglas Adams)
- The FDA is “not aware” of any instances where a patient has been harmed due to a cybersecurity incident.
- “To work in this field, you have to become devious yourself. You have to think like a malicious attacker to find weaknesses in your own work…” (Ferguson, Schneier, & Kohno, 2010)
- NETWORK-CONNECTED MEDICAL DEVICE ECOSYSTEM
- Include Security in the Design Stage
  - “Minimum Viable Product”
    ☛ a network-connected product is not viable if it is not secure
- “Hippocratic Oath for Connected Medical Devices”
- Defcon27 – Las Vegas, NV – Aug 8-11, 2019 – Biohacking Village
- The Future: Remote Monitoring
On December 11, 2018, David led the INTERACTIVE WORKSHOP: Cybersecurity For Medical Devices Is A “Team Sport” at the Connected Devices: Cybersecurity & Compliance Summit in San Francisco at the Kabuki Hotel. See http://connected-devices-summit.com. This interactive workshop focused on how device developers can collaborate with hospitals and clinics. This interactive session was conducted by a team with diverse backgrounds, including a hospital CIO, a clinical engineer, a hospital information security officer, and two neutral cybersecurity consultants to facilitate and moderate.
- Key points:
  - medical device manufacturers need to work with healthcare delivery organizations as partners
  - medical devices can be not only targets of attacks, but entry points for attacks on the network
  - the network-connected medical device ecosystem includes more than 20 entities inside and outside of healthcare delivery organizations
  - recognize that when these entities start to work together as groups, they go through the forming, storming, norming, and performing stages
  - defending network-connected medical devices requires thinking like an attacker
  - train health care providers to recognize device behavior that could indicate compromise
  - monitor network traffic to detect anomalous behaviors
  - include cybersecurity in pre-procurement screening
  - practice incident response to be ready in case something happens
The Silicon Valley Chinese Technology & Business Association organized its 2018 Tech Smart City Conference: AI, Data Science, Blockchain, Smart Manufacturing, May 11, 2018 at the San Jose City Hall and I was on the Blockchain Use Cases For Smart City Security panel. See http://www.smartcityconference2018.com.
Attended 44th Annual Asilomar Microcomputer Workshop, April 25-27, 2018 and gave a presentation on Network-Connected Medical Devices: What Could Possibly Go Wrong? It is a great group with an eclectic range of interests. See http://www.amw.org.
Moderated the Security for Network-Connected Medical Devices panel as part of the Symposium on Securing The Internet of Things (http://securingthenet.com) on March 7, 2018 in Burlingame, CA.
Network-Connected Medical Devices: What Could Possibly Go Wrong? was very well received by a standing room only audience at Triple Ring Technologies’ MedTech Frontiers event on March 1, 2018 in Newark, CA. See http://www.tripleringtech.com/category/medtechfrontiers/
Blockchain and IoT presented at the Silicon Valley Insurance Accelerator Blockchain Bootcamp in Palo Alto on December 6, 2017. See http://sviaccelerator.com/insurtech-bootcamp-block-chain-01/
Blockchain and IoT webinar at the free online Global IoT DevFest Virtual Conference on November 8, 2017. See http://globaliotfest.withthebest.com
[link to video]
Blockchain and its applications in IoT – plenary session talk at the 38th IEEE Sarnoff Symposium at the New Jersey Institute of Technology on September 18, 2017. See https://ewh.ieee.org/conf/sarnoff/2017/. To request slides, please use Contact Form on this web site.
Blockchain and the Internet of Things: Professional and Technical Consultants Association – June 13, 2017 – a presentation explaining how Blockchain technology works and how it is being adopted for a variety of IoT use cases. See https://patca.org/meetup/patca-evening-networking-discussion-meeting-30/
What You Need to Know About Blockchain for the Internet of Things: Consultants Network of Silicon Valley IEEE Chapter – January 10, 2017 – with Dr. Ryan Orr and Maurizio Greco of Chronicled, Inc. and Zaki Manian of Skuchain – Details at https://californiaconsultants.org/event/what-you-need-to-know-about-blockchain-for-the-internet-of-things/ – Presentations available for download.
Webinar for Project Management World: “Project Management for Blockchain”, June 8, 2017 – Tim Christensen of Data Chain Solutions, formerly CEO, blockchain software development company, HyperFlow Software, and Timothy Ruff, CEO of Evernym were panelists.
The webinar provided both an overview of blockchain technology and a deeper dive on some applications, including perspectives on managing blockchain projects. Webcast recording at WEBCAST
“Workshop on Blockchain” session moderated at at Open Innovation Club at PRIME and French Tech Hub office, November 2, 2016.
BLOCKCHAIN SYMPOSIUM– IT’S NOT JUST ABOUT BITCOIN AND FINANCE: Opportunities for the Internet of Things, Healthcare, and More – June 9, 2016 – Redwood City CA – Conceived and produced half-day meeting with 10 panelists and more than 70 attendees.
“Moving the Internet of Things & Machine-to-Machine Communication into the Home & Hospital” session moderated at Wireless Medical Devices Conference – December 4, 2014 – McEnery Convention Center, San Jose CA – http://tinyurl.com/42WirelessMed
“Mobile and Remote Monitoring for Disease Management session moderated at “Northern California Chapter of HIMSS Healthcare Technology Innovation Showcase – March 31, 2015 – San Jose, CA http://tinyurl.com/NorcalHIMSS31March
“Technology Innovations & Physician Entrepreneurs Panel” session moderated at Northern California HIMSS Innovation & Technology Summit – January 16, 2014 – Citrix, 4988 Great America Pkwy, Santa Clara, CA. Click here for details.
“Using Smartphones to Increase Security” session moderated at Amphion Forum – December 12-13, 2013 – Grand Hyatt San Francisco 345 Stockton St., San Francisco, CA
“An Inside Look at Interoperability in the Hospital Ecosystem: Hospital IT, Infrastructure Provider, and Wireless Utility Perspectives Unveiled” session moderated at Wireless Medical Devices West – December 3-5, 2013 – McEnery Convention Center, San Jose http://tinyurl.com/WirelessMEDWest Click here for presentation, including document references.
Global Mobile Internet Conference Mobile Health Track – October 23, 2013, Moscone Center, San Francisco, CA (conceived and produced full-day session comprised of four panels with 17 panelists and over 170 attendees)

Presentations List

Recent Posts

Recent Comments

About 42TEK

Services

Contact Us