My armchair analysis of the obvious solution is to airgap all these systems. Perhaps this would require some new infrastructure in hospitals, but it would add a very difficult-to-penetrate layer.

Yes, but now consider how important remote doctor visits are right now... it's a really hard problem.

Are remote doctor visits anything more than a video call? I'm not sure why that would make it difficult.

That's one part of it, but the real innovation in remote care is RPM devices (Remote Patient Monitoring). These can be anything from blood-glucose sensors, dialysis machines, blood pressure sensors, etc, that have an internet connection and send data live to a physician or nurse.

The struggle with these devices is that they're often cheap embedded systems that never receive firmware updates, so they do present a security concern. However, they're also immensely useful and have without a doubt saved lives.

Yes, they are lots more. The doctor needs read and write to access patient records and also log stuff for insurance info, that kind of thing.

Hospitals are porous, almost public places. You need EMR terminals in rooms where patients are left alone with the door closed overnight.

Yea so that won't happen. Hospitals don't audit anything for real. The hospital admin just hires their buddy to rubber stamp junk and gets a kickback. The actual software and hardware solutions too are based on who gives the best kickbacks to hospital admins and doctors.

Thats it. That's the American healthcare field and why its a complete shitshow. IT staff is made to deal with decisions they have no say or power in and turnover is quite high.

I think people who don't work in healthcare don't realize the complexity of this proposal.