Abstract

Very recently, Masud et al. (2022) proposed a lightweight and anonymity-preserving user authentication scheme to establish secure communication between the doctor, the gateway, and sensor nodes in IoT-based healthcare, aiming to ensure the privacy of the patients’ physiological data. In this article, however, we carefully revisit their scheme and first point out that the scheme is not practically implementable in its current form, and second we show that it is vulnerable to session key disclosure attacks, off-line password guessing attacks, and traceability attacks, under the assumption that the attacker can gain access to the sensor nodes and the doctor’s device. We also propose fixes for each of these issues or vulnerabilities.

Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
A novel user authentication and key agreement scheme for heterogeneous ad hoc wireless sensor networks, based on the Internet of Things notion
Muhamed Turkanović ... Marko Hölbl
Ad Hoc Networks | VOL. 20
Muhamed Turkanović, et. al.Muhamed Turkanović ... Marko Hölbl
13 Apr 2014
A Performance and Usability Aware Secure Two-Factor User Authentication Scheme for Wireless Sensor Networks
Sang Guun Yoo ... Juho Kim
International Journal of Distributed Sensor Networks | VOL. 9
Sang Guun Yoo, et. al.Sang Guun Yoo ... Juho Kim
01 May 2013
Cryptanalysis of Vaidya et al.'s User Authentication Scheme with Key Agreement in Wireless Sensor Networks
Jiping Li ... Zenggang Xiong
-
Jiping Li, et. al.Jiping Li ... Zenggang Xiong
01 Jan 2015
On the design of a secure user authentication and key agreement scheme for wireless sensor networks
Saru Kumari ... Mohammad Wazid
Concurrency and Computation: Practice and Experience | VOL. 29
Saru Kumari, et. al.Saru Kumari ... Mohammad Wazid
02 Aug 2016
View more papers

More From: IEEE Internet of Things Journal

Paper Title
Journal
Date
Author
AEGANAuth: Autoencoder GAN-Based Continuous Authentication With Conditional Variational Autoencoder Generative Adversarial Network
Yantao Li ... Hongyu Huang
IEEE Internet of Things Journal | VOL. 11
Yantao Li, et. al.Yantao Li ... Hongyu Huang
15 Aug 2024
A Heterogeneous Streaming Vehicle Data Access Model for Diverse IoT Sensor Monitoring Network Management
Lianjie Zhou ... Jiakuan Du
IEEE Internet of Things Journal | VOL. 11
Lianjie Zhou, et. al.Lianjie Zhou ... Jiakuan Du
15 Aug 2024
A GNN-Based Adversarial Internet of Things Malware Detection Framework for Critical Infrastructure: Studying Gafgyt, Mirai, and Tsunami Campaigns
Bardia Esmaeili ... Ali Dehghantanha
IEEE Internet of Things Journal | VOL. 11
Bardia Esmaeili, et. al.Bardia Esmaeili ... Ali Dehghantanha
15 Aug 2024
Full-Duplex NOMA-Enabled Integrated Sensing and Communication: Joint Transmit and Receive Beamforming Optimization
Ruoguang Li ... Kai Chen
IEEE Internet of Things Journal | VOL. 11
Ruoguang Li, et. al.Ruoguang Li ... Kai Chen
15 Aug 2024
View more papers