A Secure and Lightweight Three-Factor-Based Authentication Scheme for Smart Healthcare Systems

Ryu, Jihyeon; Kang, Dong-Woo; Lee, Hakjun; Kim, Hyoungshick; Won, Dongho

doi:10.3390/s20247136

Cited by 15 publications

(4 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For security analysis in our scheme, we consider the following attack model [ 20 , 21 , 22 ]: The attacker can extract the data in the device that stores some security parameters. The attacker can access the public communication channel, at which point the attacker can interrupt, return, amend and eliminate or transmit the message.…”

Section: Preliminariesmentioning

confidence: 99%

See 1 more Smart Citation

An Improved Lightweight User Authentication Scheme for the Internet of Medical Things

Kim

Ryu

Lee

et al. 2023

Sensors

Self Cite

View full text Add to dashboard Cite

The Internet of Medical Things (IoMT) is used in the medical ecosystem through medical IoT sensors, such as blood glucose, heart rate, temperature, and pulse sensors. To maintain a secure sensor network and a stable IoMT environment, it is important to protect the medical IoT sensors themselves and the patient medical data they collect from various security threats. Medical IoT sensors attached to the patient’s body must be protected from security threats, such as being controlled by unauthorized persons or transmitting erroneous medical data. In IoMT authentication, it is necessary to be sensitive to the following attack techniques. (1) The offline password guessing attack easily predicts a healthcare administrator’s password offline and allows for easy access to the healthcare worker’s account. (2) Privileged-insider attacks executed through impersonation are an easy way for an attacker to gain access to a healthcare administrator’s environment. Recently, previous research proposed a lightweight and anonymity preserving user authentication scheme for IoT-based healthcare. However, this scheme was vulnerable to offline password guessing, impersonation, and privileged insider attacks. These attacks expose not only the patients’ medical data such as blood pressure, pulse, and body temperature but also the patients’ registration number, phone number, and guardian. To overcome these weaknesses, in the present study we propose an improved lightweight user authentication scheme for the Internet of Medical Things (IoMT). In our scheme, the hash function and XOR operation are used for operation in low-spec healthcare IoT sensor. The automatic cryptographic protocol tool ProVerif confirmed the security of the proposed scheme. Finally, we show that the proposed scheme is more secure than other protocols and that it has 266.48% better performance than schemes that have been previously described in other studies.

show abstract

Section: Preliminariesmentioning

confidence: 99%

“…Many authentication studies have analyzed their performance in the following manner [ 9 , 10 , 11 , 12 , 13 , 14 , 15 , 20 , 21 , 22 , 24 , 25 , 26 , 27 , 28 , 29 , 30 , 31 , 32 ]. We compared each computation amount in terms of the research methods used.…”

Section: Performance Analysis Of the Proposed Schemementioning

confidence: 99%

An Improved Lightweight User Authentication Scheme for the Internet of Medical Things

Kim

Ryu

Lee

et al. 2023

Sensors

Self Cite

View full text Add to dashboard Cite

show abstract

“…In this section, we will discuss related works for the E-health system. A number of authentication schemes [3][4][5] have been proposed for E-health system. In 1976, Diffie and Hellman [6] proposed a method to setup session key named Diffie-Hellman key exchange.…”

Section: Related Workmentioning

confidence: 99%

Patient Family Binding and Authentication Scheme with Privacy Protection for E-Health System

Zhang

Huang

Zhu

et al. 2022

Security and Communication Networks

View full text Add to dashboard Cite

The emergence of the E-health system has brought convenience to many chronically ill patients and elderly people with limited mobility. With the help of the E-health system, patients can upload their physiological data timely and get a diagnosis at home, which is more convenient and efficient as they do not have to line up in hospitals. In order to ensure this convenience while protecting patients’ privacy, many schemes have been proposed which can help patient and medical server authenticate each other. However, considering these patients’ inconvenience, sometimes family members need to participate in the patient’s treatment process. So, the E-health system needs to provide a secure communication platform for the family members. At present, most of the authentication schemes for the E-health system only focus on the secure communication between the patient and the medical server, while ignoring the participation of family members. Moreover, in the E-health system, the permissions of family members and patient should be different, and the medical server needs to distinguish their permissions efficiently. In order to overcome these problems, we propose a patient family binding and authentication privacy protection scheme for the E-health system. In the scheme proposed by us, the medical server can efficiently assign different permissions to the family member and patient. And our scheme can allow patient to authorize their family members freely, and the increase in the number of family members will not impose additional burden on the server. At the same time, the authentication between the family member and the medical server does not require the participation of the patient. In addition, by comparing with other related schemes, we prove that our scheme has suitable efficiency and security performance in the E-health system.

show abstract

“…The associate editor coordinating the review of this manuscript and approving it for publication was Chunsheng Zhu . ing computationally complex processes based on symmetric/asymmetric encryption/decryption or using modular operations to design authentication protocols [15]- [19]. These protocols must handle various security issues such as forgery attacks, known as session-key attacks, reverse and forward secrecy, and smart card loss issues.…”

Section: Introductionmentioning

confidence: 99%

SMASG: Secure Mobile Authentication Scheme for Global Mobility Network

Ryu

Lee

et al. 2022

IEEE Access

Self Cite

View full text Add to dashboard Cite

The rapid growth of the Internet of Things (IoT) has enabled prompt services over mobile devices. The Global Mobility Network (GLOMONET) is an important global network that allows mobile users to access the Internet anywhere. Although implementing a secure mechanism in GLOMONET is a difficult and complex task due to the computational and processing limitations of most mobile devices, an authentication system is vital for secure communications among such mobile devices. In 2021, Rahmani et al. proposed an authentication method, called the advanced mobile authentication protocol for GLOMONET (AMAPG). However, we found three serious vulnerabilities in AMAPG. First, AMAPG contains large amounts of information on the smart card of the mobile phone. Therefore, they are vulnerable to attacks that steal critical information. Second, it is susceptible to password-guessing attacks. Third, AMAPG cannot guarantee the security of future messages because attackers can steal the session key. In this study, we discuss the weaknesses of AMAPG and propose a new three-factor authentication scheme called the secure mobile authentication scheme for GLOMONET (SMASG). We performed informal and formal security analyses using ProVerif and BAN Logic on SMASG. In addition, we analyzed and compared its performance with that of the latest GLOMONET-based authentication schemes. SMASG saves an average of 93% time in user login and authentication phase.INDEX TERMS Authentication, GLOMONET, the IoT.

show abstract

A Secure and Lightweight Three-Factor-Based Authentication Scheme for Smart Healthcare Systems

Cited by 15 publications

References 30 publications

An Improved Lightweight User Authentication Scheme for the Internet of Medical Things

An Improved Lightweight User Authentication Scheme for the Internet of Medical Things

Patient Family Binding and Authentication Scheme with Privacy Protection for E-Health System

SMASG: Secure Mobile Authentication Scheme for Global Mobility Network

Contact Info

Product

Resources

About