Design and Implementation of a Medical Device Security Pre-Verification Simulator Utilizing SBOM and Security Data Integration

Woo Jung Hyun; Kwang-Man Ko

Design and Implementation of a Medical Device Security Pre-Verification Simulator Utilizing SBOM and Security Data Integration

Woo Jung Hyun

Kwang-Man Ko

Vol. 14, No. 11, pp. 871-879, Nov. 2025

https://doi.org/10.3745/TKIPS.2025.14.11.871

Digital healthcare

Digital Medical Product Security Evaluation

PDF

Abstract

This paper proposes the design and implementation of a simulator system that enables pre-verification of medical device software security by integrating SBOM (Software Bill of Materials) with real-world vulnerability data. The proposed system generates an SBOM from user-registered software assets and automatically identifies vulnerabilities by linking with public sources such as CVE, CWE, NVD, and GitHub Advisory databases. It then derives threat scenarios based on CWE types and performs quantitative risk assessment using CVSS scores. The results are connected to a security checklist, visualized, and exported as a final report. This approach allows medical device developers to conduct structured security reviews in the early design phase and supports regulatory documentation preparation. The study demonstrates the potential of an automated analysis framework based on actual vulnerabilities to support embedded cybersecurity in medical devices.

Statistics

Cite this article

[IEEE Style]

W. J. Hyun and K. Ko, "Design and Implementation of a Medical Device Security Pre-Verification Simulator Utilizing SBOM and Security Data Integration," The Transactions of the Korea Information Processing Society, vol. 14, no. 11, pp. 871-879, 2025. DOI: https://doi.org/10.3745/TKIPS.2025.14.11.871.

[ACM Style]

Woo Jung Hyun and Kwang-Man Ko. 2025. Design and Implementation of a Medical Device Security Pre-Verification Simulator Utilizing SBOM and Security Data Integration. The Transactions of the Korea Information Processing Society, 14, 11, (2025), 871-879. DOI: https://doi.org/10.3745/TKIPS.2025.14.11.871.

Design and Implementation of a Medical Device Security Pre-Verification Simulator Utilizing SBOM and Security Data Integration

Submenu

Forms

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

Recent Publications
(LAST 3 YEARS)

Old Journals

Indexing

Related Journals

Design and Implementation of a Medical Device Security Pre-Verification Simulator Utilizing SBOM and Security Data Integration

Submenu

Forms

Search (IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS(TOP 10 KEYWORDS)

Recent Publications(LAST 3 YEARS)

Old Journals

Indexing

Related Journals

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)