Foreword

Introduction

1Scope

2Normative references

3Terms and definitions

4An outline of RMS security of medical devices and medical information systems

4.1Contents of RMS security of medical devices and medical information systems

4.1.1General

4.1.2RMS using a public switched telephone network

4.1.3RMS using the Internet

4.2Security requirement of RMS of medical devices and medical information systems

4.2.1General

4.2.2Security measures in RMS operation

4.2.3Contracts between HCF and RSC including 3rd parties

4.2.4Protection of personal information

4.3Roles of RSC and HCF

5Risk analysis

Annex AUse case of RMSs (informative)

A.1General

A.2Trouble shooting for outages

A.3Scheduled maintenance

A.4Software updating

A.5Performance monitoring

Annex BExample of risk analysis result of remote maintenance services (informative)

B.1Assets and Threats (Site: RSC Equipment)

B.2Assets and Threats (Site: RSC Internal Network)

B.3Assets and Threats (Site: External Network)

B.4Assets and Threats (Site: HCF Internal Network)

B.5Assets and Threats (Site: HCF Maintenance Target Devices)

Annex CExample of risk analysis criteria (informative)

Bibliography