Abstract
Health-care centers have been meeting challenges due to the increase in the aging population and chronic diseases that need continuous medical monitoring. Wireless body area network (WBAN) is a non-invasive technology consisting of diverse connected bio-medical sensors placed in the human body, which measure physiological parameters and make the information accessible to health-care professionals ubiquitously. However, a major problem in WBAN is the security and privacy of the patient's medical information. An essential security method to protect the physiological data is authentication. Several authentication protocols have been proposed for WBANs; however, some require many computing resources, and some have security vulnerabilities. In this article, the Two-Party Lightweight Authentication Protocol (TLAP) for WBANs is proposed. It uses self-certified public keys based on Elliptic Curve Cryptography (ECC), scalar point multiplication, symmetric key encryption, and the lightweight operations xor and conventional hash function to reduce the computational cost of the protocol. Formal and informal analyses were made to demonstrate that TLAP provides mutual authentication and resists potential attacks in WBANs. The security and performance of TLAP and similar existing protocols were analyzed and compared. The analyzes showed TLAP supports more security features and has lower execution time and communication cost than the other protocols, which is significant to decrease the energy consumption in WBANs.
Highlights
One of the current challenges humanity is facing is healthcare
Two-Party Lightweight Authentication Protocol (TLAP) is based on Elliptic Curve Cryptography (ECC) scalar point multiplication, symmetric key encryption, and the lightweight operations xor and conventional hash function
Security and privacy of medical information are major problems in telecare medicine based on Wireless body area network (WBAN)
Summary
One of the current challenges humanity is facing is healthcare. The world population is rapidly growing, but the number of healthcare facilities does not increase in proportion to the population size. On account of the security risks in WBANs, many authentication protocols have been proposed to achieve mutual authentication between the entities that transmit and receive health information to ensure that the patient’s medical data are not altered or disclosed to unauthorized parties. In consideration of the security problems in WBANs, we propose an authentication protocol named Two-Party Lightweight Authentication Protocol (TLAP), for the communication between the patient’s portable personal terminal and an application provider (AP) The protocol allows these two entities to be confident of each other identity and share a key to achieve the security properties of data confidentiality and integrity. Because of the limited computational and energy resources in WBANs devices [26], the proposal does not use complex operations such as the associated with PKI, bilinear pairing, or map-to-point hash function Instead, it is based on ECC scalar point multiplication, symmetric key encryption, and the lightweight operations xor and conventional hash function.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
