Efficient end-to-end authentication protocol for wearable health monitoring systems

Jiang, Qi; Ma, Jianfeng; Yang, Chao; Ma, Xindi; Shen, Jian; Chaudhry, Shehzad Ashraf

doi:10.1016/j.compeleceng.2017.03.016

Cited by 135 publications

(92 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The widespread adoption of IoT deployments might range from industrial internet to connected health, from smart city and grids to wildlife tracing, and from military monitoring to connected vehicles. Thus, the advancing applications of IoT with embedded cloud computing infrastructures indicate an ever‐escalating reliance on wireless sensor networks (WSN) 1 . The sensitive data in the open fields need to be captured anonymously but after successful mutual authentication process.…”

Section: Introductionmentioning

confidence: 99%

A secure and efficient remote patient‐monitoring authentication protocol for cloud‐IoT

Alzahrani

Irshad

Alsubhi

et al. 2020

Int J Communication

View full text Add to dashboard Cite

Summary The ongoing Cloud‐IoT (Internet of Things)–based technological advancements have revolutionized the ways in which remote patients could be monitored and provided with health care facilities. The real‐time monitoring of patient's health leads to dispensing the right medical treatment at the right time. The health professionals need to access patients' sensitive data for such monitoring, and if treated with negligence, it could also be used for malevolent objectives by the adversary. Hence, the Cloud‐IoT–based technology gains could only be conferred to the patients and health professionals, if the latter authenticate one another properly. Many authentication protocols are proposed for remote patient health care monitoring, but with limitations. Lately, Sharma and Kalra (DOI: 10.1007/s40998‐018‐0146‐5) present a remote patient‐monitoring authentication scheme based on body sensors. However, we discover that the scheme still bears many drawbacks including stolen smart card attack, session key compromise, and user impersonation attacks. In view of those limitations, we have designed an efficient authentication protocol for remote patient health monitoring that counters all the above‐mentioned drawbacks. Moreover, we prove the security features of our protocol using BAN logic‐based formal security analysis and validate the results in ProVerif automated security tool.

show abstract

Section: Introductionmentioning

confidence: 99%

A secure and efficient remote patient‐monitoring authentication protocol for cloud‐IoT

Alzahrani

Irshad

Alsubhi

et al. 2020

Int J Communication

View full text Add to dashboard Cite

show abstract

“…Furthermore, A may also learn users' passwords via a malicious terminal or extract the parameters from the smart card by side-channel attack, but cannot achieve both [2,27,36]. We summarize the capacities of the adversary A in Table 2.…”

Section: Adversary Modelmentioning

confidence: 99%

A Secure and Anonymous Two-Factor Authentication Protocol in Multiserver Environment

Wang

2018

Security and Communication Networks

View full text Add to dashboard Cite

With the great development of network technology, the multiserver system gets widely used in providing various of services. And the two-factor authentication protocols in multiserver system attract more and more attention. Recently, there are two new schemes for multiserver environment which claimed to be secure against the known attacks. However, after a scrutinization of these two schemes, we found that (1) their description of the adversary's abilities is inaccurate; (2) their schemes suffer from many attacks. Thus, firstly, we corrected their description on the adversary capacities to introduce a widely accepted adversary model and then summarized fourteen security requirements of multiserver based on the works of pioneer contributors. Secondly, we revealed that one of the two schemes fails to preserve forward secrecy and user anonymity and cannot resist stolen-verifier attack and off-line dictionary attack and so forth and also demonstrated that another scheme fails to preserve forward secrecy and user anonymity and is not secure to insider attack and off-line dictionary attack, and so forth. Finally, we designed an enhanced scheme to overcome these identified weaknesses, proved its security via BAN logic and heuristic analysis, and then compared it with other relevant schemes. The comparison results showed the superiority of our scheme.

show abstract

“…In order to address the security aspects under the above-mentioned application scenario, many authentication protocols are proposed [4][5][6][7]. In 2009, Das [8] proposed a two-factor user authentication protocol, which is claimed to have strong authentication and session key establishment and achieves efficiency.…”

Section: Related Workmentioning

confidence: 99%

A Provably Secure Anonymous Authenticated Key Exchange Protocol Based on ECC for Wireless Sensor Networks

Zhang

Wei³

2018

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

In wireless sensor networks, users sometimes need to retrieve real-time data directly from the sensor nodes. Many authentication protocols are proposed to address the security and privacy aspects of this scenario. However, these protocols still have security loopholes and fail to provide strong user anonymity. In order to overcome these shortcomings, we propose an anonymous authenticated key exchange protocol based on Elliptic Curves Cryptography (ECC). The novel protocol provides strong user anonymity such that even the gateway node and the sensor nodes do not know the real identity of the user. The security of the proposed protocol is conducted in a well-defined security model under the CDH assumption. Compared with other related protocols, our protocol is efficient in terms of communication and enjoys stronger security. The only disadvantage is that our protocol consumes more computation resources due to the usage of asymmetric cryptography mechanisms to realize strong anonymity. Consequently, our protocol is suitable for applications which require strong anonymity and high security in wireless sensor networks.

show abstract

Efficient end-to-end authentication protocol for wearable health monitoring systems

Cited by 135 publications

References 17 publications

A secure and efficient remote patient‐monitoring authentication protocol for cloud‐IoT

A secure and efficient remote patient‐monitoring authentication protocol for cloud‐IoT

A Secure and Anonymous Two-Factor Authentication Protocol in Multiserver Environment

A Provably Secure Anonymous Authenticated Key Exchange Protocol Based on ECC for Wireless Sensor Networks

Contact Info

Product

Resources

About