Lightweight RFID Protocol for Medical Privacy Protection in IoT

Fan, Kai; Jiang, Wei; Li, Hui; Yang, Yintang

doi:10.1109/tii.2018.2794996

Cited by 162 publications

(149 citation statements)

References 29 publications

Supporting

Mentioning

145

Contrasting

Unclassified

Order By: Relevance

“…Unfortunately, Benssalah et al’s protocol is still vulnerable to traceability and desynchronization attacks [ 27 ]. In 2018, Fan et al [ 10 ] proposed an ultralightweight RFID authentication protocol, named LRMI, to protect medical privacy in IoT, using cross and rotation functions for authentication. Nevertheless, in 2019, Aghili et al [ 28 ] analyzed the LRMI protocol and found that it cannot withstand traceability and impersonation attacks.…”

Section: Related Workmentioning

confidence: 99%

“…Researchers, who proposed the authentication schemes [ 10 , 14 , 25 , 26 , 27 , 28 , 31 ] for RFID-based healthcare systems in recent years, have a consensus that both the tag-to-reader channel and the reader-to-server channel are insecure so their security should be considered in the authentication schemes. Thus, we assume that an adversary can control both communication channels.…”

Section: Preliminarymentioning

confidence: 99%

“…The other is that the reader is portable and connects to the server wirelessly. In the former one, there is a special cable for the connection between the server and the reader so the channel is considered to be safe, while the channel in the latter one is deemed to be insecure due to the wireless connection between the server and the reader [ 10 ]. With the advances of mobile technology, the second architecture has become the mainstream of RFID systems so our article mainly considers this architecture.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Novel Lightweight Authentication Scheme for RFID-Based Healthcare Systems

Zhu

et al. 2020

Sensors

View full text Add to dashboard Cite

The Internet of Things (IoT) has been integrated into legacy healthcare systems for the purpose of improving healthcare processes. As one of the key technologies of IoT, radio frequency identification (RFID) technology has been applied to offer services like patient monitoring, drug administration, and medical asset tracking. However, people have concerns about the security and privacy of RFID-based healthcare systems, which require a proper solution. To solve the problem, recently in 2019, Fan et al. proposed a lightweight RFID authentication scheme in the IEEE Network. They claimed that their scheme can resist various attacks in RFID systems with low implementation cost, and thus is suitable for RFID-based healthcare systems. In this article, our contributions mainly consist of two parts. First, we analyze the security of Fan et al.’s scheme and find out its security vulnerabilities. Second, we propose a novel lightweight authentication scheme to overcome these security weaknesses. The security analysis shows that our scheme can satisfy the necessary security requirements. Besides, the performance evaluation demonstrates that our scheme is of low cost. Thus, our scheme is well-suited for practical RFID-based healthcare systems.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Preliminarymentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Novel Lightweight Authentication Scheme for RFID-Based Healthcare Systems

Zhu

et al. 2020

Sensors

View full text Add to dashboard Cite

show abstract

“…Therefore, this protocol is not suitable for RFID systems. Fan et al [40] presented a lightweight RFID security protocol for medical privacy and claimed that it satisfies secure authentication and confidentiality. This scheme utilized only XOR operation, hash computation, displacement operation, and cross operation.…”

Section: Related Workmentioning

confidence: 99%

Elliptic Curve Signcryption Based Security Protocol for RFID

Singh¹,

Patro²

2020

KSII TIIS

View full text Add to dashboard Cite

Providing security has been always on priority in all areas of computing and communication, and for the systems that are low on computing power, implementing appropriate and efficient security mechanism has been a continuous challenge for the researchers. Radio Frequency Identification (RFID) system is such an environment, which requires the design and implementation of efficient security mechanism. Earlier, the security protocols for RFID based on hash functions and symmetric key cryptography have been proposed. But, due to high strength and requirement of less key size in elliptic curve cryptography, the focus of researchers has been on designing efficient security protocol for RFID based on elliptic curves. In this paper, an efficient elliptic curve signcryption based security protocol for RFID has been proposed, which provides mutual authentication, confidentiality, non-repudiation, integrity, availability, forward security, anonymity, and scalability. Moreover, the proposed protocol successfully provides resistance from replay attack, impersonation attack, location tracking attack, de-synchronization attack, denial of service attack, man-in-the-middle attack, cloning attack, and key-compromise attack. Results have revealed that the proposed protocol is efficient than the other related protocols as it takes less computational time and storage cost, especially for the tag, making it ideal to be used for RFID systems.

show abstract

“…Α lightweight RFID medical privacy protection scheme is proposed in [23]. Its authors claim that it requires low computing resources and give extensive proofs regarding its ability to satisfy the security requirements of anonymity, replay attack resistance, synchronisation, forward security, and mutual authentication as well as nondenial of service.…”

Section: Related Workmentioning

confidence: 99%

A Blockchain-Based Platform for Consent Management of Personal Data Processing in the IoT Ecosystem

Rantos

Drosatos

Kritsas

et al. 2019

Security and Communication Networks

View full text Add to dashboard Cite

In the Internet of Things (IoT) ecosystem, the volume of data generated by devices in the user’s environment is continually increasing and becoming of particular value. In such an environment the average user is bound to face considerable difficulties in understanding the size and scope of his/her collected data. However, the provisions of the European General Data Protection Regulation (GDPR) require data subjects to be able to control their personal data, be informed, and consent to its processing in an intelligible manner. This paper proposes ADVOCATE platform, a user-centric solution that allows data subjects to easily manage consents regarding access to their personal data in the IoT ecosystem. The proposed platform also assists data controllers to meet GDPR requirements, such as informing data subjects in a transparent and unambiguous manner about the data they will manage, the processing purposes, and periods. The integrity of personal data processing consents and the immutable versioning control of them are protected by a blockchain infrastructure. Finally, the paper provides a prototype implementation of the proposed platform that supports the main consents management functionality.

show abstract

Lightweight RFID Protocol for Medical Privacy Protection in IoT

Cited by 162 publications

References 29 publications

A Novel Lightweight Authentication Scheme for RFID-Based Healthcare Systems

A Novel Lightweight Authentication Scheme for RFID-Based Healthcare Systems

Elliptic Curve Signcryption Based Security Protocol for RFID

A Blockchain-Based Platform for Consent Management of Personal Data Processing in the IoT Ecosystem

Contact Info

Product

Resources

About