Some of the copyrighted links below may require access from a University of Michigan IP address to download PDFs.
- Course reader table of contents (just the non-electronic papers)
- Signup sheet
- Syllabus
- Computer Viruses are Rampant on Medical Devices in Hospitals
- An Investigation of the Therac-25 Accidents by Leveson and Turner, IEEE Computer, 26(7), July 1993.
- "Computers and Risk" in Safeware by Leveson, 1995. [see course reader]
- ISPAB panel discussion on medical device security [see CTools]
- Unpublished manuscript on non-intrusive malware detection [paper copy]
- Investigation of an accidental exposure of radiotherapy patients in Panama (optional readings)
- Attack Trees by Bruce Schneier, Dr. Dobbs Journal, 1999.
- Generic Safety Requirements for Developing Safe Insulin Pump Software by Zhang et al., Journal of Diabetes Science and Technology, 2011.
- Problems with a syringe pump (Harold Thimbleby's video, rest below optional)
- Security and Privacy for Implantable Medical Devices by Halperin et al. IEEE Pervasive Computing, Special Issue on Implantable Electronics 7(1), January 2008.
- Pacemakers and implantable cardiac defibrillators: Software radio attacks and zero-power defenses by Halperin et al. In Proceedings of the 29th Annual IEEE Symposium on Security and Privacy, May 2008.
- Optimal Policy for Software Vulnerability Disclosure by Arora et al. In Journal of Management Science, 54(4), April 2008, pp. 642-656.
- Healthcare Technology in a Wireless World, AAMI, 2012.
- Economics of Information Security by Ross Anderson and Bruce Schneier. In IEEE S&P magazine, 2005.