HealthSec 2025: Cybersecurity in Healthcare Alohilani Resort in Waikiki, Honolulu, Hawaii Honolulu, Hawaii, HI, United States, December 9, 2025

In its most basic form, healthcare is gathering data, interpreting data into information, and transforming information into current human knowledge that can be acted upon, with each of these stages open to unintended errors and/or malicious subversion. These stages do not occur within a vacuum but rather within our existing infrastructures and social system with all their current limitations, systemic bias, and exploitable vulnerabilities. While a similar characterization can be made about security in other applied domains, healthcare is undergoing a dramatic transformation, arguably the next technological revolution, presenting immediate opportunities for improvement along with corresponding challenges in security.

Our desire is to bring together diverse researchers from academia, government, and the healthcare industry to report on the latest research efforts. As this is the second workshop following a first workshop that exceeded all expectations, we want to continue momentum toward encouraging, jumpstarting, and growing excellent interdisciplinary contributions at the forefront of cybersecurity in healthcare research. Papers with demonstrated results will be given priority. 

Submission Guidelines

All papers must be original and not simultaneously submitted to another journal or conference. The following FIVE (5) paper categories are welcome:

1. 1. Regular technical paper submissions between 4-8 pages
   2. Short technical paper submissions between 2-4 pages
   3. Lightning/Poster technical paper submissions between 1-2 pages
   4. Case Study paper submissions between 2-6 pages
   5. Position paper (opinion/invited paper) submissions between 2-12 pages [note - please email workshop chair in advance of the deadline to discuss your submission in this category]

List of Topics

• • Ransomware attacks on healthcare entities
  • Healthcare as critical national infrastructure
  • AI in healthcare (e.g. clinical decision support software, ambient clinical documentation)
  • Big data/high performance computing (HPC) in healthcare
  • Storage encryption, authentication, provenance in healthcare environments
  • Healthcare supply chains resilience
  • Online health communities and patient portals
  • Health information exchanges (HIEs)
  • Electronic health records (EHRs)
  • Telehealth (aka Hospital-at-Home)
  • Internet of (medical) Things (MIoT)
  • Medical devices, medical implants, and/or medical wearables
  • Wireless/mobile healthcare and/or remote patient monitoring
  • Digital healthcare tools and safety engineering to improve patient safety
  • Human factors safety engineering in clinical facility settings
  • Healthcare insider threats
  • Software-controlled robotic medical systems
  • Updating/patching software and re-certification of medical devices

Committees

Organizing committee

• CHAIR – William (Bill) Yurcik, Centers for Medicare & Medicaid Services (CMS HQ) (healthsec DOT chair AT gmail DOT com)
• VICE-CHAIR – Gregory Pluta, U of Illinois at Urbana-Champaign (gpluta AT illinois DOT edu)
• VICE-CHAIR – Scott Kruse, Texas State University (scottkruse AT txstate DOT edu)
• VICE-CHAIR – Sami Saydjari, Dartmouth College (sami DOT saydjari AT dartmouth DOT edu)

Publication

HealthSec 2025 proceedings will be published in two publishing outlets

(1) IEEE Xplore Digital Library pre-workshop workshop proceedings

(2) Springer Nature post-workshop book proceedings

Venue

HealthSec will be held at the 'Alohilani Resort in Waikiki, Honolulu, Hawaii.

Contact

All questions about submissions should be emailed to the Workshop Chair: <healthsec DOT chair AT gmail DOT com>