Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Explore the security vulnerabilities in Germany's medical telematics infrastructure through this 55-minute conference talk from the 39th Chaos Communication Congress. Examine the evolution of the KIM (Communication in Medicine) system version 1.5+, which now supports large file transfers up to 500 MB and simplified signature handling for users. Analyze how the system abstracts security functions through client modules to provide seamless encryption, decryption, and signing capabilities in the background. Investigate newly discovered security flaws that allow for forging or decrypting KIM messages, despite previous vulnerabilities being addressed since the initial presentation at 37C3. Learn about the critical role KIM plays in transmitting sensitive medical data including electronic sick leave certificates, dental treatment plans, laboratory information, and medication dosages. Understand the design challenges of implementing transparent security measures in healthcare communication systems and the potential risks when security abstractions create new attack vectors.
