Follow Slashdot stories on Twitter


Forgot your password?

Comment: Re: Signed by whom? (Score 1) 26

by bassman2k (#48062261) Attached to: FDA Issues Guidance On Cybersecurity of Medical Devices

Absolutely not.

The patient does not have the skills, knowledge of the device's internal hardware/firmware/software design, testing tools, or the time to make sure an update is safe and won't break the device. Only the manufacturer can do that.

Besides, "signed" doesn't necessarily mean the same certificate-based chain-of-trust process that most people are familiar with. It could be much simpler (and usually is for firmware or software on embedded devices).

In order to dial out, it is necessary to broaden one's dimension.