Whitepaper: Dr. Rushanan explains Best Practices for Ensuring Secure… Read Now

Cybersecurity Testing
- - - Cybersecurity Testing
      
      We test medical technologies for resilience, applying deep expertise, advanced tools, and regulatory insight to strengthen systems.
      
      Overview
  - - Cybersecurity Testing Solutions
      
      Hardware Testing
      
      Software & Firmware Testing
      
      Vulnerability Testing
      
      Healthcare IT Systems
Regulatory Support
- - - Regulatory Support
      
      We bring scientific rigor to support FDA and global medical device requirements—on your timeline.
      
      Overview
  - - Regulatory Support Solutions
      
      Compliance Assessment & Submission
      
      Persistent Vulnerability Monitoring
Cyber Engineering
- - - Cyber Engineering
      
      We design resilient, secure software and embedded systems that power connected medical technologies.
      
      Overview
  - - Cyber Engineering Solutions
      
      Security Data & Privacy
      
      Software Design & Development
Proven Success
- - - Featured Case Study
      
      Automated External Defibrillator
      
      Resolving an FDA hold for an AED manufacturer by fixing firmware update vulnerabilities—enabling regulatory approval, renewed sales, and improved postmarket cybersecurity.
      
      Learn More
  - - Proven Success
      
      Our Methodology
      
      Case Studies
- - - Our Methodology
    - Case Studies
Resources
- - - Thought Leadership
    - Whitepapers
Company
Contact Us

Thought Leadership

We don’t just operate in the regulatory space—we help shape it. As pioneers in cybersecurity for medical devices, our influence extends from the engineering bench to FDA guidance. These resources reflect the depth of our expertise and the leadership we bring to a rapidly evolving field.

software engineers working on a regulatory submission for a medical device to go to market

Why FDA Rejects the Cybersecurity Content of Regulatory Submissions

Thought Leadership, Featured, Dr. Avi Rubin

Harbor Labs Chief Scientist Dr. Avi Rubin identifies some of the most common reasons why the FDA rejects the cybersecurity content of regulatory submissions.

Dr. Mike Rushanan teaching Johns Hopkins University course

Dr. Mike Rushanan Teaches Groundbreaking Course on Medical Device Cybersecurity at Johns Hopkins University

The Internet of Things has long delivered on the promise of connecting everyday products such as smart thermostats,...

Dr. Mike Rushanan

A person holding a tablet displaying lines of code or data, with a blurred background

Regulatory Science Meets Cyber Science; Why It’s So Much More than a Pen Test

Anyone who has had professional interaction with the FDA has encountered the term regulatory science. It is used...

A medical professional in a lab coat and stethoscope interacting with a large medical device, likely a dialysis machine, while holding a tablet

Medical Device Manufacturer Must Do’s for Cybersecurity

At Harbor Labs, one of our most common services is reviewing the cybersecurity content of the premarket submissions of...

Dr. Mike Rushanan

Medical Systems and Third-Party Smart Devices

It is an increasingly common practice in the medical device industry to integrate third-party smart devices such as...

Dr. Mike Rushanan

Why Harbor Labs Supports The CVSS 3.0 Standard For Medical Device Security

At Harbor Labs, we are both advocates and purveyors of the Common Vulnerability Scoring System (CVSS). We include CVSS...

Dr. Avi Rubin

A close-up of a person's upper arm with a continuous glucose monitor sensor, while they hold a remote control or small device in their hand

DIY Diabetics and FDA Policy

This past week, I had the opportunity to brief policy analysts from the FDA on the growing Do-It-Yourself (DIY) trend in...

Dr. Mike Rushanan

New FDA Guidance On WiFi-Managed Infusion Pumps Is Cybersafe And Cybersecure

I was recently interviewed by a prominent medical publication on my thoughts on the FDA’s new policies on wireless...