*Article* **Attack Graph Modeling for Implantable Pacemaker**

#### **Mariam Ibrahim 1,\*, Ahmad Alsheikh 2 and Aseel Matar 3**


Received: 10 January 2020; Accepted: 17 February 2020; Published: 19 February 2020

**Abstract:** Remote health monitoring systems are used to audit implantable medical devices or patients' health in a non-clinical setting. These systems are prone to cyberattacks exploiting their critical vulnerabilities. Thus, threatening patients' health and confidentiality. In this paper, a pacemaker automatic remote monitoring system (PARMS) is modeled using architecture analysis and design language (AADL), formally characterized, and checked using the JKind model checker tool. The generated attack graph is visualized using the Graphviz tool, and classifies security breaches through the violation of the security features of significance. The developed attack graph showed the essentiality of setting up appropriate security measures in PARMS.

**Keywords:** pacemaker; threat modeling; internet of things (IoT) medical devices; vulnerabilities
