• Journal of Internet Computing and Services
    ISSN 2287 - 1136 (Online) / ISSN 1598 - 0170 (Print)
    https://jics.or.kr/
Menu

Enhancing the Cybersecurity Checklist for Mobile Applications in DTx based on MITRE ATT&CK for Ensuring Privacy


Gee-hee Yun, Kyoung-jin Kim, Journal of Internet Computing and Services, Vol. 24, No. 4, pp. 15-24, Aug. 2023
10.7472/jksii.2023.24.4.15, Full Text:
Keywords: DTx (Digital Therapeutics), MITRE ATT&CK Mobile, Mobile App Security, Privacy

Abstract

Digital therapeutics (DTx) are utilized to replace or supplement drug therapy to treat patients. DTx are developed as a mobile application for portability and convenience. The government requires security verification to be performed on digital medical devices that manage sensitive information during the transmission and storage of patient data. Although safety verification is included in the approval process for DTx, the cybersecurity checklist used as a reference does not reflect the characteristics of mobile applications. This poses the risk of potentially overlooking vulnerabilities during security verification. This study aims to address this issue by comparing and analyzing existing items based on the mobile tactics, techniques, and procedures of MITRE ATT&CK, which manages globally known and occurring vulnerabilities through regular updates. We identify 16 items that require improvement and expand the checklist to 29 items to propose improvement measures. The findings of this study may contribute to the safe development and advancement of DTx for managing sensitive patient information.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from November 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[APA Style]
Yun, G. & Kim, K. (2023). Enhancing the Cybersecurity Checklist for Mobile Applications in DTx based on MITRE ATT&CK for Ensuring Privacy. Journal of Internet Computing and Services, 24(4), 15-24. DOI: 10.7472/jksii.2023.24.4.15.

[IEEE Style]
G. Yun and K. Kim, "Enhancing the Cybersecurity Checklist for Mobile Applications in DTx based on MITRE ATT&CK for Ensuring Privacy," Journal of Internet Computing and Services, vol. 24, no. 4, pp. 15-24, 2023. DOI: 10.7472/jksii.2023.24.4.15.

[ACM Style]
Gee-hee Yun and Kyoung-jin Kim. 2023. Enhancing the Cybersecurity Checklist for Mobile Applications in DTx based on MITRE ATT&CK for Ensuring Privacy. Journal of Internet Computing and Services, 24, 4, (2023), 15-24. DOI: 10.7472/jksii.2023.24.4.15.