Savola, Reijo; Abie, Habtamu; Sihvonen, Markus
E-health applications utilizing IoT (Internet of Things) technologies hold a significant promise: biomedical sensor networks and the appropriate interpretation of the data originating from them enable better self-care of chronic diseases, and thus are potential to imply remarkable savings in national healthcare budgets. However, security is a major concern in these applications due to varying use context, changing threats and the high privacy and confidentiality requirements of healthcare data. Novel adaptive security management solutions, based on security effectiveness, correctness and efficiency evidence, can be used to respond to these needs. We analyze security objectives of E-health IoT applications and their adaptive security decision-making needs, and propose a high-level adaptive security management mechanism based on security metrics to cope with the challenges.