Implicit Trust Must Be Eliminated
Traditional security models target the protection of the entire attack surface, which is difficult to identify and constantly evolving—especially when it includes medical IoT devices. In addition, this requires opening broad access and creates vulnerabilities.
To effectively defend against persistent threats, healthcare providers need to eliminate implicit trust in all systems and people granted network access. Limiting access to resources and continually evaluating anyone or anything with authorization can protect the vast attack surfaces in healthcare organizations.