Information gathered during testing highlighted a high number vulnerabilities that could trigger potential denial of service (DoS) attacks. By utilizing the Synopsys fuzz testing tool, the healthcare provider has been able to minimize the potential for mass DoS events, ensuring patient care and patient safety.
Fuzz testing also simplified communications between the healthcare provider and their manufacturers. Clear concise reports containing Common Weakness Enumeration type, anomalies payload, and specific message segments, enable manufacturers to quickly find and remediate error conditions and allow the healthcare provider to effortlessly confirm devices meet internal security standards.
Most importantly, the healthcare provider is enabled to make informed risk decisions based on the information provided by Synopsys. While the healthcare provider can request for a fix during the procurement process, patches and updates from the manufacturers must go through a rigorous testing process that can take months before a patch is released. These are critical factors that the healthcare provider must weigh in when making purchasing decision from a patient care and patient safety standpoint.
As a result of using the Synopsys fuzz testing tool, the healthcare provider has been able to:
- Enhance purchasing decision by including security metrics
- Reduce testing effort
- Minimize impact to patient care
- Enhance patient safety