Zero-Trust Transformation in Healthcare IT: Securing Legacy Medical Devices Through Windows 11 Modernization in Clinical Workstations
Abstract
Healthcare organizations operate within increasingly hostile cyber environments while simultaneously depending on legacy medical devices and outdated operating systems. The coexistence of modern cyber threats and legacy clinical infrastructure creates a structural security paradox: hospitals must preserve device compatibility and patient safety while modernizing security architectures to withstand sophisticated lateral movement, ransomware, and advanced persistent threats. This study develops a comprehensive theoretical and evaluative framework examining the integration of Zero-Trust Architecture (ZTA) principles into hospital clinical workstations through the adoption of Windows 11, particularly in environments characterized by legacy medical operating systems.
Drawing upon foundational zero-trust theory, national standards, lateral movement detection research, healthcare incident analyses, and empirical threat intelligence reports, the article synthesizes architectural, operational, and governance perspectives. The research evaluates how Windows 11 security capabilities-when aligned with NIST SP 800-207 zero-trust principles-can mitigate risks associated with unsupported legacy systems widely prevalent in healthcare environments. The analysis contextualizes the WannaCry incident within systemic perimeter-security failure and explores contemporary threat patterns affecting healthcare providers.
The findings demonstrate that zero-trust adoption, when embedded within endpoint modernization, identity-centric validation, distributed access enforcement, AI-enhanced monitoring, and micro-segmentation strategies, significantly reduces lateral movement potential and containment failure. However, modernization must be strategically phased to preserve device interoperability and regulatory compliance. The study further identifies critical governance, operational, and socio-technical challenges, including medical device certification constraints, cost structures, cultural resistance, and integration complexity.
The article concludes that bridging zero-trust security and legacy medical devices requires a hybrid transition model-combining containment-based isolation, progressive operating system modernization, AI-enabled validation, and distributed trust enforcement-to achieve sustainable resilience in hospital clinical environments.
Keywords
References
Similar Articles
- Dr. Emiliano R. Vassalli, Event-Driven Architectures in Fintech Systems: A Comprehensive Theoretical, Methodological, and Resilience-Oriented Analysis of Kafka-Centric Microservices , International Journal of Modern Computer Science and IT Innovations: Vol. 2 No. 10 (2025): Volume 02 Issue 10
- Victor P. Ionescu, EXPLAINABLE ARTIFICIAL INTELLIGENCE AS A FOUNDATION FOR SUSTAINABLE, TRUSTWORTHY, AND HUMAN-CENTRIC DECISION-MAKING ACROSS CONSUMER, SUPPLY CHAIN, AND HEALTHCARE DOMAINS , International Journal of Modern Computer Science and IT Innovations: Vol. 3 No. 02 (2026): Volume 03 Issue 02
- Elena M. Novak, Dr. Sofia M. Petrov, Dr. Amina R. El-Sayed, Toward an Integrated AI-Enabled Precision Oncology Framework: Linking Brain Tumor Imaging, Peptide Therapeutics, Chemotherapy Toxicity, and Financial Burden in Contemporary Cancer Care , International Journal of Modern Computer Science and IT Innovations: Vol. 3 No. 03 (2026): Volume03 Issue03
- Dr. Rania E. El-Gamal, EMPIRICAL CHARACTERIZATION OF IOT FIRMWARE VERSION DIVERSITY AND PATCHING STATUS , International Journal of Modern Computer Science and IT Innovations: Vol. 2 No. 03 (2025): Volume 02 Issue 03
- Dr. Sofia Duarte, Jiwon Park, SECURING LARGE-SCALE IOT NETWORKS: A FEDERATED TRANSFER LEARNING APPROACH FOR REAL-TIME INTRUSION DETECTION , International Journal of Modern Computer Science and IT Innovations: Vol. 2 No. 06 (2025): Volume 02 Issue 06
- James T. Holloway, Modularity, Resilience, and Functional Redundancy: Integrating Microservices Architecture Principles with Tropical Montane Cloud Forest Dynamics , International Journal of Modern Computer Science and IT Innovations: Vol. 3 No. 01 (2026): Volume 03 Issue 01
- Anastasiia Livintseva, Re-coding Community: Designing AI-Native Platforms for Trust, Belonging, and Collective Agency , International Journal of Modern Computer Science and IT Innovations: Vol. 2 No. 12 (2025): Volume 02 Issue 12
- Sneha R. Patil, Dr. Liam O. Hughes, ENHANCED MALWARE DETECTION THROUGH FUNCTION PARAMETER ENCODING AND API DEPENDENCY MODELING , International Journal of Modern Computer Science and IT Innovations: Vol. 1 No. 01 (2024): Volume 01 Issue 01
- Dr. Elena M. Petrovic, Dr. Rajan V. Subramaniam, A COMPREHENSIVE REVIEW AND EMPIRICAL ASSESSMENT OF DATA AUGMENTATION TECHNIQUES IN TIME-SERIES CLASSIFICATION , International Journal of Modern Computer Science and IT Innovations: Vol. 2 No. 07 (2025): Volume 02 Issue 07
- Dr. Julian C. Vance, Prof. Anya Sharma, Synergistic Integration of AI and Blockchain: A Framework for Decentralized and Trustworthy Systems , International Journal of Modern Computer Science and IT Innovations: Vol. 2 No. 08 (2025): Volume 02 Issue 08
You may also start an advanced similarity search for this article.