Investigate The Medibus Protocol

Project overview:

  • Goal: Determine if Medibus is vulnerable or can be manipulated;
  • Location: Amsterdam/Eindhoven;
  • Timeframe: 6 months;
  • Starting: TBD;
  • Complexity: Complex;
  • Team: Market Group Public;
  • Supervisor: TBD

As a student, you have:

Education:

  • An HBO or WO level of education in the relevant domain.


Technical skills:

  • Affinity with medical technology and IoT helps;
  • Enjoys hacking/affinity with hacking.


Soft skills:

  • The ability to work well in an international team environment;
  • Good communication skills
  • Clear documentation writing skills.


The project you will be working on:

A significant amount of medical products and electronic patient file systems rely on the so called “medibus” interface for communication and integration. This medibus is used by a lot of vendors and it is unknown whether it has been thoroughly tested in the past and whether vulnerabilities might exist in this communication protocol.

As an intern, you will be responsible for the following:

  • Deepdiving on what medibus is, how it works and on what sort of systems it is used.
  • Selecting a test-setup potentially in cooperation with Secura healthcare customers where you can test the medibus communication protocol.
  • Attempt to find vulnerabilities in the medibus communication.

Describe your actions and research in a manner suitable for publication as security research whitepaper, possibly including presentations.