Security Risk and Threat Models for Health Care Product Development Processes

The purpose of this study was to explore a variety of information security risk and threat models as well as apply and develop the appropriate model of health care needs of the domain. Healthcare applications are in transition, which stands for moving towards mobile, web and cloud applications. Consequently, the security threats in the world have changed in health care sector with respect to harmful operators. For instance, the patient and personal data have become valuable assets on the local and international markets. In principle, the modern application development team have to be able to respond to current threats and therefore plan and develop safe applications for health care area; however, before the actual application development the new type of security risk and threat analysis model is needed in order to take into account constantly renewing security perspectives during the application lifecycle with sufficient accuracy. The health care application development has a general need for information security risk and threat models, and the purpose of the thesis was to apply the existing models of Tieto’s health care development model. The research was successful, and it was implemented as case study research and the evaluation of the discovered models is based on literature analysis. Further evaluation was conducted after workshops with the Tieto staff members with a multiple choice questionnaire. The results of the research were two threat models STRIDE and CAPEC for Tieto’s Healthcare and Industrial Internet units. Additional result was an experimental theoretical attack library model based on behavior sciences which utilized antecedents of a person or a group, behavior and consequences. Keywords/tags (subjects) risk, threat, risk model, threat model, cyber security, information security, data protection Miscellaneous Attachments include workshop’s PowerPoint presentations, the questionnaire and answers.