Security analysis of the IEEE 802.15.6 standard

Toorani, Mohsen

doi:10.1002/dac.3120

Cited by 23 publications

(11 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In addition to the low power requirements, communications must be reliable, considering that devices are continuously changing their location due to humans’ movements. Furthermore, regarding securing communications, three security levels are defined [ 252 ]: level 0 does not provide any security mechanisms and unsecured communications are established, level 1 provides message authentication and integrity assurance, but no encryption mechanisms, and level 2 provides message authentication, integrity assurance and encryption. This standard is expected to be adopted by miniaturised and resource-constrained medical devices to properly communicate the user-centric data.…”

Section: Communication Architecture and Technologiesmentioning

confidence: 99%

Sensors for Context-Aware Smart Healthcare: A Security Perspective

Batista

Moncusi

López-Aguilar³

et al. 2021

Sensors

View full text Add to dashboard Cite

The advances in the miniaturisation of electronic devices and the deployment of cheaper and faster data networks have propelled environments augmented with contextual and real-time information, such as smart homes and smart cities. These context-aware environments have opened the door to numerous opportunities for providing added-value, accurate and personalised services to citizens. In particular, smart healthcare, regarded as the natural evolution of electronic health and mobile health, contributes to enhance medical services and people’s welfare, while shortening waiting times and decreasing healthcare expenditure. However, the large number, variety and complexity of devices and systems involved in smart health systems involve a number of challenging considerations to be considered, particularly from security and privacy perspectives. To this aim, this article provides a thorough technical review on the deployment of secure smart health services, ranging from the very collection of sensors data (either related to the medical conditions of individuals or to their immediate context), the transmission of these data through wireless communication networks, to the final storage and analysis of such information in the appropriate health information systems. As a result, we provide practitioners with a comprehensive overview of the existing vulnerabilities and solutions in the technical side of smart healthcare.

show abstract

Section: Communication Architecture and Technologiesmentioning

confidence: 99%

Sensors for Context-Aware Smart Healthcare: A Security Perspective

Batista

Moncusi

López-Aguilar³

et al. 2021

Sensors

View full text Add to dashboard Cite

show abstract

“…After introducing the IEEE Standard 802.15.6 (WBAN) in 2012 [6], as a promising wireless technology for low-power devices, numerous cryptography protocols were proposed based on sensitivity, universality, and mobility of the network [7]. Toorani (2016) analyzed the security of the IEEE 802.15.6-2012 standard. He pointed out that some protocols had minor weaknesses that made them vulnerable to various attacks.…”

Section: Introductionmentioning

confidence: 99%

“…He pointed out that some protocols had minor weaknesses that made them vulnerable to various attacks. He also noted that such minor vulnerabilities, which were linked to the safety regulations in the standard, could be particularly important in medical fields that deal with patients' confidential and sensitive information and could be a threat to human life [8].…”

Section: Introductionmentioning

confidence: 99%

An Improved WBSN Key-Agreement Protocol Based on Static Parameters and Hash Functions

et al. 2021

View full text Add to dashboard Cite

Wireless telecommunications systems have expanded rapidly over the past few years. Wireless Body Sensor Network (WBSN) is a relatively novel area of research and development in healthcare systems. However, it has multiple constraints and challenges regarding human health, social interactions, coverage radius, energy consumption, and communication reliability. In addition, communications between nodes can contain highly sensitive personal information, while hostile environments will impose a wide range of security risks. Therefore, designing authenticated key agreement (AKA) protocols is a crucial challenge in these networks. The current study, considering the security issues of the Li et al. scheme and some of their new extensions, proposes an improved AKA protocol with anonymity and unlinkability of the sensor node sessions. The results of theoretical analysis compared with similar schemes indicated that the proposed scheme could reduce average energy consumption and communication cost by 41 percent. It also reduced the average computation time by 61 percent. Furthermore, it was shown by formal/informal analyses that, on top of unlinkability and anonymity features, other central security features in the current scheme were similar and comparable to those in the recent and similar schemes.

show abstract

“…The authors in [11,12] show that a dictionary attacker who eavesdrops messages between the initiator and the responder in a protocol run can obtain PK I and PK I and compute Q(PW) from Q(PW) = PK I − PK I . Then, Q(PW) can be used as a verifier and the attacker can try probable PWs from a dictionary of most probable passwords and check them using Q(PW).…”

mentioning

confidence: 99%

“…The author in [11,12] illustrates that if SK I has been compromised by an attacker, the attacker can acquire the Diffie-Hellman key K through computing K = SK I × PK R and MK from MK = CMAC 128 (LMB 128 (K), N I N R ) since PK R , N I and N R are sent in the form of plaintext. …”

mentioning

confidence: 99%

An Improved Protocol for the Password Authenticated Association of IEEE 802.15.6 Standard That Alleviates Computational Burden on the Node

et al. 2016

View full text Add to dashboard Cite

Abstract:The IEEE Std 802.15.6 is an international standard for wireless body area networks (WBANs). It contains many aspects of communications, and also provides security services, since some communications in WBANs can carry sensitive information. In this standard, the password authenticated association is a protocol for two participants to identify each other and establish a new master key based on a pre-shared short password. However, recent research shows that this protocol is vulnerable to several attacks. In this paper, we propose an improved protocol which can resist all of these attacks. Moreover, the improved protocol alleviates computational burden on one side of the two participants, the node, which is usually less powerful compared with the other side, the hub.

show abstract

Security analysis of the IEEE 802.15.6 standard

Cited by 23 publications

References 29 publications

Sensors for Context-Aware Smart Healthcare: A Security Perspective

Sensors for Context-Aware Smart Healthcare: A Security Perspective

An Improved WBSN Key-Agreement Protocol Based on Static Parameters and Hash Functions

An Improved Protocol for the Password Authenticated Association of IEEE 802.15.6 Standard That Alleviates Computational Burden on the Node

Contact Info

Product

Resources

About