To main content

NEMECYS: NEw MEdical CYbersecurity assessment and design Solutions

NEMECYS will develop tools and procedures that help device manufacturers, integrators and health care providers to ensure cyber security by design for connected medical and diagnostic devices.

Contact person

Ill.: Artem Podrez – Pexels.com

Medical and Diagnostic devices are increasingly being connected to the internet, and this implies that they are being exposed to cyber threats that ultimately could affect the well-being of patients. 

The European health care system is moving toward personalised, distributed, and home-based services. This is made possible via new and improved connected medical devices (MDs) and in vitro diagnostic devices connected to the internet (together, CMDs), and will benefit health care providers in terms of reduced cost (fewer hospital beds) and improved service. Patients will see improved quality of life in terms of reduced travel time and reduced stress via treatment at home or where they want it. However, for these benefits to be fully realised, the cybersecurity of CMDs needs to be ensured.

NEMECYS will benefit practitioners such as cybersecurity communities, MD manufacturers, CMD scenario system integrators and CMD scenario operators (e.g. health care providers), with downstream benefits to patients and the wider public, through more cost-effective and efficient care enabled via effective and streamlined cybersecurity.

NEMECYS helps practitioners to:

  1. comply with MD regulations
  2. to be able to apply proportionate MD cybersecurity (too little security risks exposure, too much is costly and can obstruct clinical care)
  3. build in cybersecurity by design for both MDs and the connected scenarios they operate in.

This is achieved by:

  1. providing recommendations for best practice and guidelines for MD cybersecurity by design, along with compliance assurance tooling
  2. providing a risk-benefit scheme to address cybersecurity risk balanced with clinical benefit
  3. providing a set of specific tools to address MD cybersecurity by design and their deployment in connected scenarios.

The NEMECYS team has cybersecurity risk experts, two hospitals who are already implementing IoT and remote care-based scenarios, three medical device manufacturers, major computer science research players and experienced systems integrators. This team is ideally placed to ensure that NEMECYS can enable practitioners to apply the right security at the right place, at low cost.

Key facts

Project duration

2023 - 2025

Funding

EU

Partners

  • SINTEF Digital (coordinator)
  • Mode Sensors AS (NO)
  • IBM Israel (IL)
  • ATC (GR)
  • Marina Salud SA (ES)
  • Ospefale San Raffaele SRL (IT)
  • University of Ioannina (GR)
  • Information Catalyst SL (ES)
  • Debiotech SA (CH)
  • University of Southampton (UK)
  • Information Catalyst for Enterprise Ltd (UK)
  • PD Neurotechnology Ltd (UK)

Project type

RIA - HORIZON-HLTH-2022-IND-13-01 - Enhancing cybersecurity of connected medical devices

Relevant links

Homepage of the Horizon Europe NEMECYS project

NEw MEdical CYbersecurity assessment and design Solutions - CORDIS, EU research results

Explore research areas