• Decrease font size
  • Return font size to normal
  • Increase font size
U.S. Department of Health and Human Services

Recognized Consensus Standards

  • Print
  • Share
  • E-mail
Super Search Devices@FDA
510(k) | DeNovo | Registration & Listing | Adverse Events | Recalls | PMA | HDE | Classification | Standards
CFR Title 21 | Radiation-Emitting Products | X-Ray Assembler | Medsun Reports | CLIA | TPLC

New Search Back To Search Results
Part B: Supplementary Information Sheet (SIS)
FR Recognition List Number 043 Date of Entry 06/27/2016 
FR Recognition Number 13-83
AAMI TIR57:2016
Principles for medical device security - Risk management.
Provides guidance on methods to perform information security risk management for a medical device in the context of the Safety Risk Management process required by ISO 14971. The TIR incorporates the expanded view of risk management from IEC 80001-1 by incorporating the same key properties of Safety, Effectiveness and Data & Systems Security with Annexes that provide process details and illustrative examples.
Extent of Recognition
Complete standard
Relevant FDA Guidance and/or Supportive Publications*
Content of Premarket Submissions for Management of Cybersecurity in Medical Devices - Guidance for Industry and Food and Drug Administration Staff, Document Issued on: October 2, 2014.

Postmarket Management of Cybersecurity in Medical Devices- Draft Guidance for Industry and Food and Drug Administration Staff, Document issued on: January 22, 2016.

NIST Special Publication 800-82, Guide to Industrial Control Systems (ICS) Security, June 2011.

FDA Technical Contact
 Brian Fitzgerald
Standards Development Organization
AAMI Association for the Advancement of Medical Instrumentation http://www.aami.org
FDA Specialty Task Group (STG)
*These are provided as examples and others may be applicable.