US NIST issues second draft of remote patient monitoring ecosystem guide

The US National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) issued the second draft of NIST Special Publication 1800-30, titled Securing Telehealth Remote Patient Monitoring Ecosystem. Healthcare delivery organizations (HDOs) increasingly introduce telehealth and remote patient monitoring (RPM) as part of a patient’s care regimen. The adoption rates have skyrocketed, yet adequate privacy and cybersecurity measures have not been placed. The lack of such measures allows unauthorized individuals to exploit sensitive data or manipulate patient monitoring services. It is against this background that the NCCoE developed a reference architecture that outlines how HDOs may use standards-based approaches and cybersecurity technologies to implement measures to enhance privacy protection and cybersecurity, thereby strengthening the resiliency of the telehealth RPM ecosystem. The NCCoE is accepting public comments now through 7 June, 2021.