CyberMed
ServicesSoftware DHFCyberSprintEventsResourcesGuideAboutContactBook a CallGet The Guide
← All guide chapters

Chapter 6: eSTAR Submission Documentation · Section 6.9

Security Testing Documentation for eSTAR Submission

6.9.1 From Testing Implementation to FDA Evidence

Your security testing activities (conducted per Chapter 4.5) generate the evidence FDA needs to verify that your security controls work as intended. This section focuses on transforming your testing work into comprehensive documentation that demonstrates effective cybersecurity implementation and validation.

The Testing Documentation Challenge:

During development (Chapter 4.5), you:

  • Executed various types of security testing (SAST, DAST, penetration testing, fuzzing)
  • Used multiple tools and methodologies
  • Generated test results and identified vulnerabilities
  • Implemented fixes and performed verification

For FDA submission, transform this testing work into documentation that:

  • Demonstrates systematic security verification and validation
  • Provides evidence of effective security control implementation
  • Shows comprehensive coverage of identified threats and risks
  • Proves security requirements have been met

6.9.2 FDA Security Testing Requirements

Transform your testing activities to address FDA's specific expectations.

Required Testing Categories Coverage

FDA Testing Expectations (per 2023 guidance):

  1. Security Requirements Testing

    • Evidence that each design input requirement was implemented successfully
    • Boundary analysis and rationale for boundary assumptions

  2. Threat Mitigation Testing

    • Testing demonstrating effective risk control measures per threat models
    • Adequacy verification of cybersecurity risk controls

  3. Vulnerability Testing

    • Testing per ANSI/ISA 62443-4-1 section 9.4
    • Abuse/misuse cases, malformed and unexpected inputs
    • Robustness and fuzz testing
    • Attack surface analysis and vulnerability chaining

  4. Penetration Testing

    • Independent testing to discover and exploit vulnerabilities
    • Comprehensive reporting with specific elements

Testing Coverage Verification

Pre-Submission Testing Audit:

Security Testing Coverage Assessment

Requirements Coverage:
✓ Authentication requirements: 15 test cases, 100% pass rate
✓ Authorization requirements: 22 test cases, 100% pass rate  
✓ Cryptography requirements: 18 test cases, 100% pass rate
✓ Integrity requirements: 12 test cases, 100% pass rate
✓ Confidentiality requirements: 8 test cases, 100% pass rate
✓ Logging requirements: 10 test cases, 100% pass rate
✓ Resiliency requirements: 14 test cases, 95% pass rate (1 acceptable failure)
✓ Update requirements: 20 test cases, 100% pass rate

Threat Coverage:
✓ All High/Critical threats from threat model tested
✓ Medium threats: 85% tested (remaining justified as low risk)
✓ Multi-patient harm scenarios: 100% tested
✓ Emergency access scenarios: 100% tested

Risk Coverage:
✓ All security risks rated Medium+ have associated test cases
✓ Controls for transferred safety risks validated
✓ Residual risks verified through testing
✓ Control effectiveness demonstrated

Vulnerability Coverage:
✓ OWASP Top 10 testing completed where applicable
✓ Known vulnerabilities in components tested
✓ Common medical device vulnerabilities addressed
✓ Device-specific attack vectors tested

6.9.3 Enhanced Testing Documentation Structure

Organize your testing documentation for optimal FDA review.

Comprehensive Test Report Organization

Security Testing Documentation Package:

18-Security-Testing-Report-v2.1.pdf
├── Executive Summary
│   ├── Testing approach overview
│   ├── Key findings and risk assessment
│   ├── Overall security posture assessment
│   └── Residual risks and acceptance rationale
├── Testing Methodology
│   ├── Testing strategy and approach
│   ├── Tools and configurations used
│   ├── Test environment specifications
│   └── Independence and expertise verification
├── Requirements Verification Testing
│   ├── Security requirements test matrix
│   ├── Boundary analysis and assumptions
│   ├── Test procedures and results
│   └── Traceability to design inputs
├── Threat Mitigation Validation
│   ├── Threat-to-test mapping
│   ├── Control effectiveness testing
│   ├── Attack simulation results
│   └── Multi-patient harm scenario testing
├── Vulnerability Assessment Results
│   ├── Automated scanning results
│   ├── Manual vulnerability testing
│   ├── Third-party component assessment
│   └── Fuzzing and robustness testing
├── Penetration Testing Report
│   ├── Independent penetration testing results
│   ├── Attack vector analysis
│   ├── Exploit development and validation
│   └── Business logic vulnerability assessment
├── Remediation and Verification
│   ├── Vulnerability remediation evidence
│   ├── Fix verification testing
│   ├── Regression testing results
│   └── Residual risk assessment
└── Appendices
    ├── Detailed test procedures
    ├── Tool configurations and versions
    ├── Raw test outputs (selected)
    └── Third-party test reports

Executive Summary Enhancement

Example Executive Summary for Submission:

Security Testing Executive Summary

Testing Scope and Approach:
Comprehensive security testing conducted on the InsulinDeliverySystem v2.1 
including all software components, network interfaces, and update mechanisms. 
Testing performed between October 2023 and January 2024 using risk-based 
approach focusing on patient safety and data protection.

Testing Independence:
Primary testing conducted by internal security team with independent verification by CyberMed (third-party testing company with medical device 
expertise). 

Key Security Validation Results:
✓ All 119 security requirements successfully verified
✓ All identified High/Critical threats effectively mitigated
✓ Zero critical vulnerabilities identified in final testing
✓ 3 medium vulnerabilities identified and remediated
✓ Penetration testing confirmed effective defense-in-depth implementation
✓ Multi-patient harm scenarios successfully contained

Critical Findings Addressed:
1. Authentication bypass vulnerability (CVE-2023-xxxx) in third-party library
   - Risk: High (unauthorized therapy access)
   - Remediation: Library updated to patched version
   - Verification: Re-testing confirmed fix effective

2. Network denial-of-service vulnerability in communication protocol
   - Risk: Medium (temporary service disruption)
   - Remediation: Rate limiting and connection management implemented
   - Verification: Stress testing confirmed resilience

3. Information disclosure through debug logging
   - Risk: Medium (patient data exposure in logs)
   - Remediation: Debug logging disabled in production builds
   - Verification: Log analysis confirmed no sensitive data exposure

Overall Security Posture Assessment:
Device demonstrates robust security implementation with effective controls 
addressing all identified threats. Residual risks are acceptable and align 
with similar devices in the market. Security testing validates that device 
meets cybersecurity objectives and maintains patient safety under attack scenarios.

Ongoing Security Validation:
Post-market security monitoring established including quarterly penetration 
testing, continuous vulnerability scanning, and annual security assessment 
updates per cybersecurity management plan.

6.9.4 Requirements Verification Testing Documentation

Transform requirements testing into FDA-acceptable verification evidence.

Security Requirements Test Matrix

Enhanced Requirements Verification:

Security Requirements Verification Matrix

Requirement ID: SEC-REQ-001
Requirement: System shall implement multi-factor authentication for privileged users
Risk Mapping: Addresses RSK-003 (unauthorized access), Threat T-001 (authentication bypass)

Test Cases:
TC-AUTH-001: Valid credential verification
- Procedure: Authenticate with valid username + password + token
- Expected: Authentication succeeds, session established
- Result: PASS - Authentication successful in 2.3 seconds average
- Evidence: Test log AUTH_001_20240115.log

TC-AUTH-002: Invalid password rejection
- Procedure: Attempt authentication with invalid password
- Expected: Authentication fails, account not locked (first attempt)
- Result: PASS - Authentication rejected, proper error message
- Evidence: Test log AUTH_002_20240115.log

TC-AUTH-003: Account lockout after failed attempts
- Procedure: Attempt 5 consecutive failed authentications
- Expected: Account locked after 5th attempt, admin notification sent
- Result: PASS - Account locked, notification sent to admin console
- Evidence: Test log AUTH_003_20240115.log, Admin notification screenshot

TC-AUTH-004: Multi-factor requirement enforcement
- Procedure: Attempt authentication with only password (token disabled)
- Expected: Authentication fails, multi-factor prompt displayed
- Result: PASS - Authentication rejected, clear error message
- Evidence: UI screenshot AUTH_004_screen.png

TC-AUTH-005: Emergency override functionality  
- Procedure: Use biometric emergency override during simulated cardiac arrest
- Expected: Rapid access granted (<5 sec), audit log created, limited scope access
- Result: PASS - Access granted in 3.2 seconds, full audit trail
- Evidence: Emergency simulation video, audit log EMERG_001.log

Boundary Analysis:
Password Length: Tested 1-50 characters (boundary at 8 min, 32 max)
Session Timeout: Tested 1-480 minutes (boundary at 10 min default)
Failed Attempt Count: Tested 1-10 attempts (boundary at 5 lockout threshold)
Token Validity: Tested 1-3600 seconds (boundary at 30 seconds default)

Verification Conclusion:
Requirement SEC-REQ-001 successfully implemented and verified. All test cases 
passed, boundary conditions properly handled, emergency scenarios functional.

Boundary Analysis Documentation

Example Boundary Analysis:

Security Boundary Analysis Report

Authentication System Boundary Analysis:

Input: Password Length
Boundary Conditions:
- Minimum: 8 characters (security requirement)
- Maximum: 32 characters (system limitation)
- Test Points: 7, 8, 9, 31, 32, 33 characters

Results:
✓ 7 characters: Properly rejected with clear error message
✓ 8 characters: Accepted when meeting complexity requirements
✓ 9 characters: Accepted normally
✓ 31 characters: Accepted normally
✓ 32 characters: Accepted normally  
✓ 33 characters: Properly truncated to 32 with user notification

Security Rationale:
Minimum length ensures sufficient entropy for security (NIST guidelines).
Maximum length prevents buffer overflow attacks while accommodating user needs.
Truncation behavior prevents denial of service through excessive input length.

Input: Network Packet Size
Boundary Conditions:
- Minimum: 64 bytes (Ethernet minimum)
- Maximum: 1500 bytes (MTU limit)
- Test Points: 63, 64, 65, 1499, 1500, 1501 bytes

Results:
✓ 63 bytes: Rejected at network layer (expected behavior)
✓ 64 bytes: Processed normally
✓ 65 bytes: Processed normally
✓ 1499 bytes: Processed normally
✓ 1500 bytes: Processed normally
✓ 1501 bytes: Fragmented appropriately, reassembled correctly

Security Assessment:
Proper handling of network boundary conditions prevents buffer overflow 
attacks and ensures network protocol compliance. No security vulnerabilities 
identified in boundary handling.

6.9.5 Threat Mitigation Validation Documentation

Document how testing validates your threat mitigation strategy.

Threat-to-Test Mapping

Comprehensive Threat Validation:

Threat Mitigation Validation Report

Threat ID: T-003
Threat: Man-in-the-Middle Attack on Network Communications
Risk Level: High (patient data exposure, command injection)
Controls: TLS encryption (CTL-NET-001), certificate pinning (CTL-NET-002)

Validation Testing:

Test Scenario 1: MITM Attack Simulation
Setup: Controlled network environment with attacker-controlled access point
Procedure:
1. Device connects to legitimate-appearing but malicious network
2. Attacker attempts to intercept and modify communications
3. Monitor device behavior and data protection

Results:
✓ Device detected certificate mismatch due to pinning
✓ Connection automatically terminated
✓ No patient data transmitted to attacker
✓ User notified of connection security issue
✓ Device reverted to offline mode maintaining core functions

Evidence: Network capture MITM_001.pcap, Device log SEC_MITM_001.log

Test Scenario 2: Certificate Substitution Attack
Setup: Valid certificate from different legitimate CA
Procedure:
1. Present device with valid but unexpected certificate
2. Attempt to establish encrypted connection
3. Monitor certificate validation process

Results:
✓ Certificate pinning correctly rejected valid but unexpected certificate
✓ Connection establishment failed as expected
✓ Appropriate error logging without sensitive data exposure
✓ Graceful fallback to secure configuration mode

Evidence: Certificate analysis CERT_SUB_001.txt, SSL handshake capture

Test Scenario 3: Protocol Downgrade Attack
Setup: Force device to attempt weaker encryption protocols
Procedure:
1. Configure network to only offer TLS 1.0 or SSL
2. Monitor device protocol negotiation
3. Verify protocol security enforcement

Results:
✓ Device refused to connect with protocols below TLS 1.2
✓ No fallback to insecure protocols
✓ Clear error messaging indicating security requirements
✓ Connection attempt properly logged for security monitoring

Evidence: Protocol negotiation log PROTO_DOWN_001.log

Threat Mitigation Assessment:
Controls CTL-NET-001 and CTL-NET-002 effectively mitigate Threat T-003.
Testing confirms no feasible attack path for man-in-the-middle attacks.
Device maintains security posture even under sophisticated attack scenarios.
Residual Risk: Low (requires physical network access + sophisticated techniques)

Control Effectiveness Validation

Example Control Testing:

Security Control Effectiveness Testing

Control ID: CTL-AUTH-003
Control: Role-Based Access Control (RBAC)
Purpose: Limit user access to appropriate functions based on clinical role

Effectiveness Testing:

Test 1: Role Permission Enforcement
Clinical User Role Testing:
✓ Can access patient data viewing functions
✓ Can modify therapy parameters within preset limits
✓ Cannot access administrative functions (properly blocked)
✓ Cannot modify system configuration (properly blocked)
✓ Cannot access other patients' data (proper isolation)

Administrative Role Testing:
✓ Can access all clinical functions
✓ Can modify system configuration
✓ Can manage user accounts and roles
✓ Cannot bypass audit logging (proper accountability)
✓ Cannot access functions outside assigned permissions

Test 2: Privilege Escalation Prevention
Vertical Escalation Testing:
✓ Clinical users cannot gain administrative privileges
✓ Session manipulation attempts blocked
✓ API parameter tampering prevented
✓ Direct database access properly restricted

Horizontal Escalation Testing:
✓ Users cannot access other users' sessions
✓ Patient data isolation maintained between users
✓ Role-based data filtering effective

Test 3: Emergency Access Validation
Emergency Override Testing:
✓ Emergency access provides appropriate elevated privileges
✓ Time-limited emergency sessions properly enforced
✓ Emergency access scope limited to life-critical functions
✓ Enhanced audit logging during emergency access
✓ Automatic review flagging for emergency sessions

Control Effectiveness Assessment:
CTL-AUTH-003 successfully enforces role-based access control with no 
identified bypass mechanisms. Emergency access maintains security while 
enabling life-critical patient care. Control operates as designed with 
acceptable performance impact (<50ms additional latency per request).

6.9.6 Penetration Testing Documentation

Transform penetration testing results into compelling FDA evidence.

Independent Penetration Testing Report

Enhanced Penetration Testing Documentation:

Independent Penetration Testing Report Summary

Testing Performed By: CyberMed (cybermed.ai)
Lead Tester: John Doe, CISSP
Testing Period: May 13-17, 2025
Testing Approach: Gray-box testing with architecture documentation provided

Tester Independence and Expertise:
Lead tester has no financial relationship with manufacturer and 8+ years 
experience in penetration testing. Testing team includes specialists in embedded systems, wireless protocols, and healthcare networks. 

Testing Scope:
In-Scope:
✓ All external network interfaces
✓ Wireless communication protocols (Wi-Fi, Bluetooth)
✓ Web-based management interfaces
✓ Mobile application interfaces
✓ Update and configuration mechanisms
✓ Physical access points (USB, debug ports)

Out-of-Scope:
- Destructive testing that could damage device hardware
- Clinical workflow disruption
- Testing during active patient simulations

Testing Methodology:
Phase 1 - Reconnaissance and Discovery
- Network service discovery
- Interface enumeration
- Attack surface mapping
- Wireless protocol analysis

Phase 2 - Vulnerability Assessment
- Automated vulnerability scanning
- Manual testing of identified services
- Authentication mechanism analysis
- Authorization bypass attempts
- Input validation testing
- Cryptographic implementation review

Phase 3 - Exploitation and Impact Analysis
- Proof-of-concept exploit development
- Privilege escalation attempts
- Lateral movement testing
- Data extraction validation
- Business logic vulnerability assessment

Key Findings:

Critical Findings: 0
No critical security vulnerabilities identified that could lead to immediate 
patient harm or widespread system compromise.

High Findings: 1 (Remediated)
H-001: Authentication bypass in debug interface
- Impact: Direct device access without authentication
- Remediation: Debug interface disabled in production firmware
- Verification: Re-testing confirmed fix effective

Medium Findings: 2 (Remediated)
M-001: Information disclosure in error messages
- Impact: System configuration details exposed
- Remediation: Error message sanitization implemented
- Verification: Error handling testing confirms fix

M-002: Denial of service through resource exhaustion  
- Impact: Temporary device unresponsiveness
- Remediation: Rate limiting and resource management improved
- Verification: Stress testing confirms resilience

Low Findings: 3 (Documented)
L-001: Verbose service banners
L-002: Non-critical information disclosure in HTTP headers  
L-003: Timing attack potential in password validation

Overall Security Assessment:
Device demonstrates strong security posture with effective defense-in-depth 
implementation. No critical attack paths identified. Identified vulnerabilities 
were promptly remediated with effective fixes. Security controls operate as 
designed and provide appropriate protection for medical device environment.

Penetration Testing Conclusion:
Device security implementation is appropriate for intended use environment. 
Risk of successful attack is low given implemented controls and monitoring 
capabilities. Recommended for deployment with standard security operational 
procedures.

6.9.7 Vulnerability Testing and Remediation Evidence

Document comprehensive vulnerability management and resolution.

Vulnerability Remediation Tracking

Example Remediation Documentation:

Security Vulnerability Remediation Report

Vulnerability Management Summary:
Total Vulnerabilities Identified: 18
- Critical: 0
- High: 3 (100% remediated)
- Medium: 7 (100% remediated)  
- Low: 8 (100% assessed, 5 remediated, 3 accepted)

High Severity Vulnerability Example:

Vulnerability ID: VULN-2023-001
Discovery Date: October 15, 2023
Discovery Method: Third-party penetration testing
Severity: High (CVSS 8.2)

Description:
SQL injection vulnerability in patient data search function allowing 
unauthorized database access and potential patient data exposure.

Technical Details:
Location: Patient search API endpoint (/api/v1/patients/search)
Root Cause: Unsanitized user input directly inserted into SQL query
Attack Vector: POST request with malicious search parameters
Proof of Concept: Successfully extracted patient data using crafted payload

Impact Assessment:
Clinical Impact: High - Complete patient database could be exposed
Data at Risk: All patient records, PHI, therapy histories
Affected Users: Any user with search access (all clinical roles)
Attack Complexity: Low - Standard SQL injection techniques

Remediation Actions:
1. Immediate Response (June 15, 2025):
   - Disabled affected search function
   - Implemented input validation as temporary mitigation
   - Notified security team and management

1. Permanent Fix Development (June 16-20, 2025):
   - Implemented parameterized SQL queries
   - Added comprehensive input sanitization
   - Enhanced audit logging for search functions
   - Conducted code review of similar functions

1. Testing and Validation (June 21-25, 2025):
   - Unit testing of fixed code
   - Integration testing with live database
   - Penetration testing of fix
   - Performance testing to ensure no degradation

1. Deployment and Verification (June 26, 2025):
   - Deployed fix to test environment
   - Conducted final verification testing
   - Re-enabled search function with monitoring
   - Confirmed vulnerability elimination

Verification Evidence:
- Code review report: CR_VULN2023001_20231020.pdf
- Unit test results: UT_SEARCH_20231023.log
- Penetration test revalidation: PT_RETEST_20231025.pdf
- SQL injection test suite: SQLI_TESTS_20231025.log

Post-Remediation Assessment:
- Vulnerability successfully eliminated
- No impact on system performance or functionality
- Enhanced security posture through improved input validation
- Additional protections prevent similar vulnerabilities

Lessons Learned:
- Implemented mandatory secure coding training for development team
- Enhanced code review checklist to include SQL injection prevention
- Added automated static analysis tools to catch similar issues
- Established quarterly penetration testing to identify issues earlier

6.9.8 Test Tool Documentation and Configuration

Provide transparency about testing tools and methodologies.

Tool Configuration Documentation

Example Tool Documentation:

Security Testing Tools and Configuration

Static Application Security Testing (SAST):
Tool: SonarQube Enterprise v8.9.2
Configuration:
- Language analyzers: Java, C/C++, JavaScript, Python
- Security rules: OWASP Top 10, CWE/SANS Top 25, custom medical device rules
- Quality gate: Zero critical security vulnerabilities, <5% technical debt
- Integration: Jenkins CI/CD pipeline, automatic scan on commit

Custom Rules Applied:
- Medical device specific authentication patterns
- PHI handling validation rules
- Cryptographic implementation checks
- Logging and audit trail validation

Scan Results Summary:
- Total lines of code analyzed: 847,293
- Security vulnerabilities found: 23 (all remediated)
- False positive rate: 12% (manually verified)
- Scan duration: 23 minutes average

Dynamic Application Security Testing (DAST):
Tool: OWASP ZAP v2.11.1
Configuration:
- Authentication: Configured for all user roles
- Session management: Cookie and token handling
- Scope: All web interfaces and APIs
- Attack strength: Medium (balance between coverage and safety)

Test Coverage:
- Authentication bypass testing
- Authorization vulnerability scanning  
- Input validation testing
- Session management validation
- SSL/TLS configuration testing

Results:
- Endpoints tested: 247
- Vulnerabilities identified: 8 (6 medium, 2 low)
- Testing duration: 4.5 hours
- Coverage: 95% of identified attack surface

Penetration Testing Tools:
Primary Tools Used:
- Nmap 7.92: Network discovery and service enumeration
- Burp Suite Professional v2023.1: Web application testing
- Metasploit Framework v6.2.4: Exploit development and validation
- Wireshark v3.6.2: Network traffic analysis
- Custom scripts: Device-specific protocol testing

Configuration Details:
- Scanning intensity: Moderate (avoid device disruption)
- Authentication: Credentials provided for authenticated testing
- Network isolation: Dedicated test network environment
- Safety measures: Emergency stop procedures, device monitoring

Vulnerability Scanning:
Tool: Nessus Professional v10.4.1
Configuration:
- Scan policy: Medical device safe checks only
- Credential scanning: Enabled with test accounts
- Frequency: Weekly automated scans
- Plugin set: Full, excluding potentially disruptive checks

Scan Coverage:
- Network services: 100% of exposed services
- Operating system: Full OS vulnerability assessment
- Applications: All installed software components
- Configuration: Security configuration review

Results Integration:
All tool results integrated into vulnerability management system with:
- Risk scoring based on medical device context
- Automated correlation with SBOM components
- Integration with change control processes
- Tracking through resolution and verification

6.9.9 Common FDA Testing Documentation Deficiencies

Learn from frequent FDA feedback to enhance your testing documentation.

Insufficient Testing Independence

FDA Feedback:

"Testing documentation doesn't clearly demonstrate independence between testers and developers. Please clarify the independence of your security testing team."

Prevention Strategy:

  • Document organizational separation between testing and development teams
  • Include résumés/qualifications of testing personnel
  • Describe testing methodology independence requirements
  • Show third-party validation where appropriate

Inadequate Testing Coverage

FDA Feedback:

"Security testing appears incomplete. Testing doesn't address all identified threats and risks from your threat model and risk assessment."

Prevention Strategy:

  • Create comprehensive threat-to-test traceability matrix
  • Document risk-based testing prioritization decisions
  • Show testing coverage for all medium+ severity risks
  • Explain any testing exclusions with risk-based rationale

Missing Remediation Evidence

FDA Feedback:

"While vulnerabilities are listed as 'remediated,' insufficient evidence is provided to verify effective resolution. Please provide verification testing results."

Prevention Strategy:

  • Include detailed before/after testing evidence for each vulnerability
  • Provide proof-of-concept exploits showing fix effectiveness
  • Document regression testing to ensure fixes don't introduce new issues
  • Show independent verification of remediation when possible

6.9.10 Final Testing Documentation Quality Review

Pre-Submission Testing Documentation Checklist

Completeness Verification:

  • All FDA-required testing categories addressed
  • Testing covers all identified threats and medium+ risks
  • Independent testing performed and documented
  • Tool configurations and versions specified
  • All vulnerabilities tracked through resolution

Evidence Quality:

  • Test procedures clearly documented and repeatable
  • Results presented with clear pass/fail determinations
  • Vulnerability remediation thoroughly verified
  • Testing independence and expertise demonstrated
  • Professional presentation with clear organization

Integration Verification:

  • Testing aligns with security requirements and architecture
  • Threat mitigation validation maps to threat model
  • Risk-based testing approach demonstrated
  • Test results support residual risk assessments
  • Cross-references to other submission documents accurate

Remember: Your security testing documentation must convince FDA that you've systematically verified and validated your device's security implementation. The goal is demonstrating comprehensive security verification that proves your controls work effectively in realistic scenarios.

Key Success Factor: The most compelling testing documentation shows not just that you tested for security, but that your testing systematically validates the effectiveness of your security approach in protecting patients and maintaining device safety and effectiveness.

See how your device measures up

Take the free FDA 524B readiness assessment and get a personalized gap report covering this topic and more.

Check Your Readiness