A Conceptual Model for Internet of Things Risk Assessment in Healthcare Domain with Deep Learning Approach

Abstract

The Internet of Things (IoT) has become a prevalent technology in the IT industry. One of the industries that can benefit extensively in this technology is healthcare. However, the healthcare IoT is still under debate with several studies suggesting it is lack of interoperability, security, and too much complexity. Even more, the risk involved in deploying it is still enormous. Many traditional risk assessment models are unable to provide a specific IoT risk guideline and specification, especially in the healthcare area. Thus, it is essential to understand the full extent of the IoT risk and how to manage its risk in the healthcare area. The risk management models, such as NIST SP 800-30, ISO/IEC 27005, OCTAVE, CRAMM, and EBIOS, which are among the leading and widely used in many areas and healthcare fields, have also been described. Besides, this paper includes a review of three IoT risk assessment models that are based on ABA-IDS, Deep Learning, and AHP-SVM. Based on the review analysis, we proposed a new enhanced healthcare IoT risk assessment model, which aims to provide a real-time monitoring and mitigating risks that incorporate the NIST SP 800-30 framework, ABA-IDS, and CNN deep learning. This shall constitute a better classification of each risk identified to find the best risk mitigation plan.