Internet of Medical Things (IoMT) enable physicians to provide precise care over the Internet for registered patients anywhere, bringing convenience to people's everyday life. Considering the importance of patient's privacy in IoMT, data security between patients and medical servers should be protected. Therefore, the authentication of identity and the agreement of a shared secret key are particularly important. In this work, we propose a lightweight anonymous authentication scheme between patients and medical servers in IoMT. We combine blockchain technology with biometric technology in order to form a shared session secret key. It can protect the privacy of patients through mutual authentication between patients and servers. Afterwards, the formal analysis of BAN logic shows that our scheme is secure. Non-formal analysis shows that our scheme achieves designed security objectives. Finally, we implement the cryptography primitives to verify our scheme. Comprehensive comparative experiments show that our proposed scheme achieves a better performance in both computation and communication efficiency.
Internet of Medical Things (IoMT) enable physicians to provide precise care over the Internet for registered patients anywhere, bringing convenience to people’s everyday life. Considering the importance of patient’s privacy in IoMT, data security between patients and medical servers should be protected. Therefore, the authentication of identity and the agreement of a shared secret key are particularly important. In this work, we propose a lightweight anonymous authentication scheme between patients and medical servers in IoMT. We combine blockchain technology with biometric technology in order to form a shared session secret key. It can protect the privacy of patients through mutual authentication between patients and servers. Afterwards, the formal analysis of BAN logic shows that our scheme is secure. Non-formal analysis shows that our scheme achieves designed security objectives. Finally, we implement the cryptography primitives to verify our scheme. Comprehensive comparative experiments show that our proposed scheme achieves a better performance in both computation and communication efficiency.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.