Abstract

Electronic prescription (E-prescription) is an emerging technology that allows health practitioners (doctors, physicians, pharmacists, or nurses) to electronically transmit prescriptions to pharmacies. E-prescription systems allow doctors to avoid traditional medical practices in which prescriptions are sent manually in handwritten form. Additionally, in cases in which a patient may not be able to collect the medication in person due to physical disabilities, the medications can be delivered to the patient's home directly. Furthermore, payments can also be made online (e.g., using credit cards or bank transfers). However, these distinctive features require a series of guidelines for the successful deployment of the E-prescription system due to stringent legal requirements and privacy regulations. Two major security requirements i.e. confidentiality and authentication need to be addressed. In general, the solution to ensuring confidentiality and authentication lies in the combination of both the encryption and digital signature functions in a single logic step called signcryption. Therefore, in this article, we present a lightweight and provable secured certificate-based proxy signcryption (CB-PS) scheme for e-prescription systems. The formal security verification uses the Automated Validation of Internet Security Protocols and Applications (AVISPA) tool along with informal security analysis, which authenticates that the proposed CB-PS scheme can potentially be implemented in resource-constrained low-computing electronic devices in E-prescription systems.

Highlights

  • Electronic prescription (EP) is an emerging technology, which replaces the hand written prescription and allows the health care practitioners (Pharmacist, Doctor, Nurses, etc.) to electronically transmit prescriptions to the smart Pharmacies [1]

  • The transmission is done through open network, in which the attacker can access to the message, reveal the actual contents, and injecting a new message to the network on behalf of the actual sender

  • We shortly explain the mathematical hard problems which are used for the efficiency and security hardiness of proxy signcryption schemes that are RSA, bilinear pairing (BP), elliptic curve (EC), and hyper elliptic curve (HEC), respectively

Read more

Summary

INTRODUCTION

Electronic prescription (EP) is an emerging technology, which replaces the hand written prescription and allows the health care practitioners (Pharmacist, Doctor, Nurses, etc.) to electronically transmit prescriptions to the smart Pharmacies [1]. To meet such type of security countermeasures during transmission of prescription related data, one such solution is signcryption [3]. The problems will arise, if the patient may not able to collect their medication or send a request for medication to the smart Pharmacy In this situation, the patient gives their medication collection rights to another person (agent), who communicates regarding the collection of the medication on behalf of the patient. For removing the aforementioned flaws, one such solution is certificate-based cryptography (CBC) is available [9], which enables the users to generate their public and private key by themselves. We shortly explain the mathematical hard problems which are used for the efficiency and security hardiness of proxy signcryption schemes that are RSA, bilinear pairing (BP), elliptic curve (EC), and hyper elliptic curve (HEC), respectively. We provide the computing and communications cost comparison analysis against the existing related scheme and the results clearly shows our new scheme is ensuring better performance

PAPER ORGANIZATION
PRELIMINARIES
HYPER ELLIPTIC CURVE
SYNTAX OF CB-PS
BASICS OF AVISPA
THREAT MODEL
RELATED WORK
LIMITATIONS
SYSTEM ARCHITECTURE
PROPOSED CB-PS SCHEME
IMPLEMENTATION AND VALIDATION
VIII. CONCLUSIONS
Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.