Abstract

In recent years, with the increase in degenerative diseases and the aging population in advanced countries, demands for medical care of older or solitary people have increased continually in hospitals and healthcare institutions. Applying wireless sensor networks for the IoT-based telemedicine system enables doctors, caregivers or families to monitor patients’ physiological conditions at anytime and anyplace according to the acquired information. However, transmitting physiological data through the Internet concerns the personal privacy of patients. Therefore, before users can access medical care services in IoT-based medical care system, they must be authenticated. Typically, user authentication and data encryption are most critical for securing network communications over a public channel between two or more participants. In 2016, Liu and Chung proposed a bilinear pairing-based password authentication scheme for wireless healthcare sensor networks. They claimed their authentication scheme cannot only secure sensor data transmission, but also resist various well-known security attacks. In this paper, we demonstrate that Liu–Chung’s scheme has some security weaknesses, and we further present an improved secure authentication and data encryption scheme for the IoT-based medical care system, which can provide user anonymity and prevent the security threats of replay and password/sensed data disclosure attacks. Moreover, we modify the authentication process to reduce redundancy in protocol design, and the proposed scheme is more efficient in performance compared with previous related schemes. Finally, the proposed scheme is provably secure in the random oracle model under ECDHP.

Highlights

  • As more network technologies and smart devices have been developed, many IoT (Internet of Things) applications have been proposed, such as transportation and logistics services, healthcare services and a variety of smart environment domains

  • In order to design a secure and two-factor user authentication scheme for wireless healthcare sensor networks, Liu and Chung [21] in 2016 proposed a bilinear pairing-based [22] authentication scheme, and Figure 1 illustrates the comprehensive structure of the IoT-based medical care system, which could be applied in hospitals or healthcare institutions

  • To solve the above-mentioned security problems, we present an improved version of Liu–Chung’s authentication scheme using ECC, and we prove that the proposed scheme is secure under the elliptic curve discrete logarithm problem (ECDLP) and the elliptic curve Diffie–Hellman problem (ECDHP)

Read more

Summary

Introduction

As more network technologies and smart devices have been developed, many IoT (Internet of Things) applications have been proposed, such as transportation and logistics services, healthcare services and a variety of smart environment (home, office, plant) domains. For the development of medical care services in hospitals and healthcare institutions, IoT-based WSNs technology is used to supplement physiological collection and measurement, enabling doctors, caregivers and families to examine the physiological conditions of patients remotely at anytime and anyplace through the Internet [1,2,3,4,5,6]. In 2013, Xue et al [20] presented a temporal-credential-based authentication scheme for resource-constrained WSNs, and the authors claimed that their scheme provides relatively more security criteria without increasing system overheads too much in terms of communication, computation and storage. In order to design a secure and two-factor user authentication scheme for wireless healthcare sensor networks, Liu and Chung [21] in 2016 proposed a bilinear pairing-based [22] authentication scheme, and Figure 1 illustrates the comprehensive structure of the IoT-based medical care system, which could be applied in hospitals or healthcare institutions.

Review of Liu–Chung’s Authentication Scheme
Setup Phase
Registration Phase
Login Phase
Verification Phase
Access Control and Encryption Phase
Password Disclosure Attacks
Replay Attacks
Sense Data Disclosure Attacks
Sense Data Forgery Attacks
Stolen Smart Card Attacks
Off-Line Password Guessing Attacks
The Proposed Scheme
Security Analysis of the Proposed Scheme
Resistance to Password Disclosure and Password Guessing Attacks
Resistance to Replay Attacks
Resistance to Sensed Data Disclosure Attacks
Resistance to Sensed Data Forgery Attacks
Resistance to Stolen Smart Card Attacks
Resistance to Off-Line Password Guessing Attacks
Provision of the Efficient Login Phase
Provision of User Anonymity
Provision of Mutual Authentication
5.10. Provision of Session Key Security
Security Proof of the Proposed Scheme
Adversarial Model
Mutual Authentication between Ui and TA
S Authenticates Ui and Key Agreement
Performance Analyses and Comparisons
Conclusions

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
An efficient user authentication and key agreement scheme for heterogeneous wireless sensor network tailored for the Internet of Things environment
Mohammad Sabzinejad Farash ... Marko Hölbl
Ad Hoc Networks | VOL. 36
Mohammad Sabzinejad Farash, et. al.Mohammad Sabzinejad Farash ... Marko Hölbl
10 Jun 2015
Design of a Secure Authentication and Key Agreement Scheme Preserving User Privacy Usable in Telecare Medicine Information Systems
Hamed Arshad ... Abbas Rasoolzadegan
Journal of Medical Systems | VOL. 40
Hamed Arshad, et. al.Hamed Arshad ... Abbas Rasoolzadegan
24 Sep 2016
A secure chaotic maps and smart cards based password authentication and key agreement scheme with user anonymity for telecare medicine information systems.
Chun-Ta Li ... Cheng-Chi Lee
Journal of medical systems | VOL. 38
Chun-Ta Li, et. al.Chun-Ta Li ... Cheng-Chi Lee
06 Jul 2014
AAA-WSN: Anonymous access authentication scheme for wireless sensor networks in big data environment
Shadi Nashwan
Egyptian Informatics Journal | VOL. 22
Shadi NashwanShadi Nashwan
09 Mar 2020
View more papers

More From: Sensors

Paper Title
Journal
Date
Author
Near-Field Passive Wireless Sensor for High-Temperature Metal Corrosion Monitoring
Noah Strader ... Ashley C Daniszewski
Sensors | VOL. 24
Noah Strader, et. al.Noah Strader ... Ashley C Daniszewski
06 Dec 2024
SHM System for Composite Material Based on Lamb Waves and Using Machine Learning on Hardware
Gracieth Cavalcanti Batista ... Osamu Saotome
Sensors | VOL. 24
Gracieth Cavalcanti Batista, et. al.Gracieth Cavalcanti Batista ... Osamu Saotome
06 Dec 2024
Steps to Facilitate the Use of Clinical Gait Analysis in Stroke Patients: The Validation of a Single 2D RGB Smartphone Video-Based System for Gait Analysis
Philipp Barzyk ... Michael Schwenk
Sensors | VOL. 24
Philipp Barzyk, et. al.Philipp Barzyk ... Michael Schwenk
06 Dec 2024
Design and Validation of an Obstacle Contact Sensor for Aerial Robots
Victor Vigara-Puche ... Matteo Fumagalli
Sensors | VOL. 24
Victor Vigara-Puche, et. al.Victor Vigara-Puche ... Matteo Fumagalli
06 Dec 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.