Shivayogi Hiremath,Geng Yang,Kunal Mankodiya

DOI: https://doi.org/10.4108/icst.mobihealth.2014.257440

2014-01-01

Abstract:The proliferation of mobile devices, ubiquitous internet, and cloud computing has sparked a new era of Internet of Things (IoT), thus allowing researchers to create application-specific solutions based on the interconnection between physical objects and the internet. Recently, wearable devices are rapidly emerging and forming a new segment-“Wearable IoT (WIoT)” due to their capability of sensing, computing and communication. Future generations of WIoT promise to transform the healthcare sector, wherein individuals are seamlessly tracked by wearable sensors for personalized health and wellness information-body vital parameters, physical activity, behaviors, and other critical parameters impacting quality of daily life. This paper presents an effort to conceptualize WIoT in terms of their design, function, and applications. We discuss the building blocks of WIoT-including wearable sensors, internet-connected gateways and cloud and big data support-that are key to its future success in healthcare domain applications. We also present a new system science for WIoT that suggests future directions, encompassing operational and clinical aspects.

Dawei Jiang,Guoquan Shi

DOI: https://doi.org/10.1155/2021/6656204

2021-02-05

Journal of Healthcare Engineering

Abstract:With the close integration of science and technology and health, the broad application prospects of healthy interconnection bring revolutionary changes to health services. Health and medical wearable devices can collect real-time data related to user health, such as user behavior, mood, and sleep, which have great commercial and social value. Healthcare wearable devices, as important network nodes for health interconnection, connect patients and hospitals with the Internet of Things and sensing technology to form a huge medical network. As wearable devices can also collect user data regardless of time and place, uploading data to the cloud can easily make the wearable device’s system vulnerable to attacks and data leakage. Defects in technology can sometimes cause problems such as lack of control over data flow links in wearable devices, and data and privacy leaks are more likely to occur. In this regard, how to ensure the data security and user privacy while using healthcare wearable devices to collect data is a problem worth studying. This article investigates data from healthcare wearable devices, from technical, management, and legal aspects, and studies data security and privacy protection issues for healthcare wearable devices to protect data security and user privacy and promote the sustainable development of the healthcare wearable device industry and the scientific use of data collection.

health care sciences & services

J. Zhou,Z. Cao,X. Dong

2018-01-01

Abstract:Security and privacy are the major concerns in cloud computing as users have limited access on the stored data at the remote locations managed by different service providers.These become more challenging especially for the data generated from the wearable devices as it is highly sensitive and heterogeneous in nature. Most of the existing techniques reported in the literature are having high computation and communication costs and are vulnerable to various known attacks, which reduce their importance for applicability in real-world environment. Hence, in this paper, we propose a new cloud based user authentication scheme for secure authentication of medical data. After successful mutual authentication between a user and wearable sensor node, both establish a secret session key that is used for future secure communications. The extensively-used Real-Or-Random (ROR) model based formal security analysis and the broadly-accepted Automated Validation of Internet Security Protocols and Applications (AVISPA) tool based formal security verification show that the proposed scheme provides the sessionkey security and protects active attacks. The proposed scheme is also informally analyzed to show its resilience against other known attacks. Moreover, we have done a detailed comparative analysis for the communication and computation costs along with security and functionality features which proves its efficiency in comparison to the other existing schemes of its category.

Shengling Wang,Rongfang Bie,Feng Zhao,Nan Zhang,Xiuzhen Cheng,Hyeong-Ah Choi

DOI: https://doi.org/10.1109/mnet.2016.7579028

IF: 10.294

2016-01-01

IEEE Network

Abstract:Wearable computing has great potential to revolutionize the future of everyday lives. Nonetheless, communications among wearable devices may lead to significant security concerns, given that wearable devices often capture sensitive personal information and may have to operate in hostile environments. In this article, we systematically study the security issues in wearable communications. Specifically, we start with an overview of security concerns for typical wearable applications. Then we review the state-of-the-art research and state-of-the-practice development for security in wearable computing in both industry and academia. At last, we propose a layered adaptive security architecture, with the aim of preventing adversaries from "breaking through" all layers of security by simply compromising one particular security measure, and discuss possible mechanisms to enhance the security of each layer.

Hui Lin,Quanwen He,Jia Hu,Xiaoding Wang

DOI: https://doi.org/10.1109/TCBB.2023.3281819

Abstract:Digital healthcare services have become an integral part of our lives. There is an increasing number of healthcare professionals and patients using medical wearables for diagnosis and treatment, which simplifies and improves the diagnostic and therapeutic process. However, inappropriate use of medical data may result in the disclosure of private patient information. For protecting patients' privacy when using medical wearables, we propose a new blockchain-based data access security scheme. Specifically, the elliptic curve encryption algorithm and zero-knowledge authentication method are used to authenticate the identity of patients and doctors in the blockchain network. Furthermore, we develop a smart recommendation method based on deep reinforcement learning to recommend appropriate doctors for patients. Next, patients allow recommended doctors to access their medical data, and smart contracts specifically designed for secure data access to medical wearables will regulate subsequent data access. The security analysis and experimental results demonstrate that the proposed scheme can effectively protect patients' privacy during treatment through secure authentication and data access for medical wearables.

Geetanjali Rathee,Hemraj Saini,Shishir K. Shandilya,S. Rajasoundaran

DOI: https://doi.org/10.1504/ijahuc.2024.136136

2024-01-20

International Journal of Ad Hoc and Ubiquitous Computing

Abstract:The wearable e-healthcare systems are a critical IoT mission having wearable sensors, wireless devices and intelligent monitoring of surroundings. The ultimate goal of e-healthcare systems is to identify or diagnose the patients by recognising their various features that are correlated among each other. The involvement of several malicious objects may try to hide the actual recognition of wearable objects for benefiting their own purposes. Though various researchers have proposed various security and efficient schemes, however, it may lead to several computations, management overhead. The aim of this paper is to propose a trusted and efficient e-healthcare communication mechanism while recognising the exact identification of wearable objects. In addition, the proposed mechanism is associated with blockchain mechanism to ensure the transparency and security inside the network while sharing the information. The proposed mechanism is further validated over several security threats against number of security parameters.

computer science, information systems,telecommunications

Haobo Yang

2024-09-02

Abstract:The Internet of Things (IoT) expansion has brought a new era of connected devices, including wearable devices like smartwatches and medical monitors, that are becoming integral parts of our daily lives. These devices not only offer innovative functionalities but also generate and transmit plenty of sensitive data, making their security and privacy the primary concerns. Given the unique challenges posed by wearable devices, such as limited computational resources and the need for real-time data processing, encryption stands as a cornerstone for safeguarding the integrity and confidentiality of the data they handle. Various encryption algorithms, each with its own set of advantages and limitations, are available to meet the diverse security and computational needs of wearable IoT devices. As we move into an age where quantum computing could potentially disrupt traditional encryption methods, choosing a suitable encryption algorithm becomes even more critical. This paper explores and evaluates the suitability of different encryption methods in the context of wearable IoT devices, considering current and future security challenges.

Cryptography and Security

Seyedmostafa Safavi,Zarina Shukur

DOI: https://doi.org/10.1371/journal.pone.0114306

IF: 3.7

2014-12-05

PLoS ONE

Abstract:Wearable health tech provides doctors with the ability to remotely supervise their patients' wellness. It also makes it much easier to authorize someone else to take appropriate actions to ensure the person's wellness than ever before. Information Technology may soon change the way medicine is practiced, improving the performance, while reducing the price of healthcare. We analyzed the secrecy demands of wearable devices, including Smartphone, smart watch and their computing techniques, that can soon change the way healthcare is provided. However, before this is adopted in practice, all devices must be equipped with sufficient privacy capabilities related to healthcare service. In this paper, we formulated a new improved conceptual framework for wearable healthcare systems. This framework consists of ten principles and nine checklists, capable of providing complete privacy protection package to wearable device owners. We constructed this framework based on the analysis of existing mobile technology, the results of which are combined with the existing security standards. The approach also incorporates the market share percentage level of every app and its respective OS. This framework is evaluated based on the stringent CIA and HIPAA principles for information security. This evaluation is followed by testing the capability to revoke rights of subjects to access objects and ability to determine the set of available permissions for a particular subject for all models Finally, as the last step, we examine the complexity of the required initial setup.

Yas Vaseghi,Behnaz Behara,Mehdi Delrobaei

2023-12-13

Abstract:The Internet of Medical Things (IoMT) offers a promising solution to improve patient health and reduce human error. Wearable smart infusion pumps that accurately administer medication and integrate with electronic health records are an example of technology that can improve healthcare. They can even alert healthcare professionals or remote servers during operational failure, preventing distressing incidents. However, as the number of connected medical devices increases, the risk of cyber threats also increases. Wearable medication devices based on IoT attached to patients' bodies are prone to significant cyber threats. Being connected to the Internet exposes these devices to potential harm, which could disrupt or degrade device performance and harm patients. To ensure patient safety and well-being, it is crucial to establish secure data authentication for internet-connected medical devices. It is also important to note that the wearability option of such devices might downgrade the computational resources, making them more susceptible to security risks. This paper implements a security approach to a wearable infusion pump. We discuss practical challenges in implementing security-enabled devices and propose initial solutions to mitigate cyber threats.

Cryptography and Security,Systems and Control

Sandeep Pirbhulal,Wanqing Wu,Guanglin Li,Arun Kumar Sangaiah

DOI: https://doi.org/10.1109/mce.2019.2923925

2019-09-01

IEEE Consumer Electronics Magazine

Abstract:Advancement in medical devices and communication technologies has allowed transmission of medical information using wireless body sensor networks. One of the severe challenges to smart healthcare is that patient's data is sensitive, so its secure transmission is important. This paper aims to discuss secure and safe communications in smart and connected healthcare.

telecommunications,engineering, electrical & electronic,computer science, hardware & architecture

Zhou, J.,Zhenfu Cao,Xiaolei Dong,Xiaodong Lin

DOI: https://doi.org/10.1109/MWC.2015.7096296

2015-01-01

Abstract:Cloud-assisted wireless wearable communications have been increasingly pervasive with the profound development of sensor, wireless communication, and cloud computing technologies, in addition to the wide adoption of e-health, location-based service, and mobile smart communities. In this article we mainly focus on the goals and tactics of privacy-preserving data aggregation in cloud-assisted wireless wearable communications. With respect to the unique security and privacy requirements and the efficiency consideration for resource-constrained wearable devices, we identify the inappropriateness of secure multiparty computation and fully homomorphic encryption and give new generalized solutions to tackle the challenging issue of efficient privacy-preserving data aggregation and outsourced computation in wireless wearable communications. Last but not least, a series of interesting open problems are suggested along with potential solutions to cast light on the research in this emerging area.

Khlood Jastaniah,Ning Zhang,Mustafa A. Mustafa

DOI: https://doi.org/10.1109/access.2024.3367000

IF: 3.9

2024-03-15

IEEE Access

Abstract:With the advent of cloud computing and the vast amount of data produced by IoT wearable devices, outsourcing computation has become a widespread practice in providing health services to individuals and society. Conventional approaches typically focus on either secure data processing or fine-grain access control. Nevertheless, only a few existing solutions consider secure fine-grain access control over the encrypted computational results. Notably, these solutions overlook different data access request needs (e.g., needs of data owners and requesters to access data of a single or multiple data owners) and data owners' access control. In addition, they almost exclusively focus on data aggregation operations, neglecting multiplication and division operations on encrypted data, which are fundamental operations with significant importance in various application scenarios. In this paper, we present efficient and privacy-preserving schemes for multiplication and division operations with fine-grain data-sharing and user-centric access control capabilities, called SAMM and SAMD, respectively. We utilise a multi-key Paillier homomorphic cryptosystem to allow privacy-preserving computation of data from both single and multiple data owners. Additionally, we integrate ciphertext-policy attribute-based encryption to enable fine-grain sharing with multiple data requesters based on user-centric access control. Through formal security analysis, we demonstrate that these schemes ensure data confidentiality and authorisation. Moreover, the computational cost and communication overhead of our proposed schemes are thoroughly analysed, and our experimental results indicate that these schemes outperform existing state-of-the-art solutions in terms of efficiency, making them well-suited for use in modern IoT wearable healthcare systems.

computer science, information systems,telecommunications,engineering, electrical & electronic

Cheng Guo,Pengxu Tian,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1109/tii.2020.2995228

IF: 12.3

2021-01-01

IEEE Transactions on Industrial Informatics

Abstract:Wearable body area network is a key component of the modern-day e-healthcare system (e.g., telemedicine), particularly as the number and types of wearable medical monitoring systems increase. The importance of such systems is reinforced in the current COVID-19 pandemic. In addition to the need for a secure collection of medical data, there is also a need to process data in real-time. In this article, we design an improved symmetric homomorphic cryptosystem and a fog-based communication architecture to support delay- or time-sensitive monitoring and other-related applications. Specifically, medical data can be analyzed at the fog servers in a secure manner. This will facilitate decision making, for example, allowing relevant stakeholders to detect and respond to emergency situations, based on real-time data analysis. We present two attack games to demonstrate that our approach is secure (i.e., chosen-plaintext attack resilience under the computational Diffie-Hellman assumption), and evaluate the complexity of its computations. A comparative summary of its performance and three other related approaches suggests that our approach enables privacy-assured medical data aggregation, and the simulation experiments using Microsoft Azure further demonstrate the utility of our scheme.

Hong Liu,Xuanxia Yao,Tao Yang,Huansheng Ning

DOI: https://doi.org/10.1109/jiot.2018.2843561

IF: 10.6

2019-01-01

IEEE Internet of Things Journal

Abstract:Along with an integration of wearable devices, wireless communications and big data in the smart health, biomedical data is collected referring to multiple associated patients during interactions. Due to communication channel openness and data sensibility, privacy preservation become increasingly noteworthy in the edge and cloud hybrid computing-based healthcare applications. In this paper, a cooperative privacy preservation scheme is designed for wearable devices with identity authentication and data access control considerations in the space-aware and time-aware contexts. In the space-aware edge computing mode, secret sharing and MinHash-based authentication is designed to enhance privacy preservation along with similarity computing without revealing sensitive data. In the time-aware cloud computing mode, ciphertext policy attribute-based encryption is applied for fine-grained access control, and bloom filter is used to achieve efficient data structure without privacy exposure. The GNY logic-based security formal analysis is performed to prove theoretical correctness, and the proposed scheme achieves cooperative privacy preservation for wearable devices in smart health with communication overhead and computation cost.

Hong Liu,Huansheng Ning,Yinliang Yue,Yueliang Wan,Laurence T. Yang

DOI: https://doi.org/10.1016/j.future.2017.04.014

IF: 7.307

2018-01-01

Future Generation Computer Systems

Abstract:Along with the development of user-centric wireless communications, wearable devices appear to be popular for real-time collecting a user’s private data to provide intelligent service support. Compared with traditional short-range communications, the wearable devices confront more severe system vulnerabilities and security threats during interactions. Considering the limitations of computational capabilities and communication resources, it brings more challenges to design privacy-preserving authentication schemes for the resource-constrained wearable devices. In this work, local authentication and remote authentication are respectively designed for cloud assisted wearable devices. In the local authentication mode, hash based selective disclosure mechanism and Chebyshev chaotic map are jointly applied to achieve mutual authentication between a wearable device and a smart phone. In the remote authentication mode, Merkle hash tree based selective disclosure mechanism is designed to improve the structure of data fields in the certificate, and a yoking-proof is established to realize interactions between two wearable devices and a smart phone, and is further transmitted to the cloud server for simultaneous verification. Meanwhile, security formal analysis is performed based on the BAN logic for proving that the proposed remote authentication protocol has theoretical design correctness. It indicates that the proposed authentication scheme is available and flexible for ubiquitous wearable devices.

Shaopeng Guan,Youliang Cao,Yuan Zhang

DOI: https://doi.org/10.1109/jiot.2024.3487154

IF: 10.6

2024-01-01

IEEE Internet of Things Journal

Abstract:Data privacy preservation and secure sharing are key technical challenges faced by smart wearable healthcare IoT systems. Blockchain technology enables privacy preservation for medical data through encryption. However, conventional data encryption hampers data analysis and sharing, and decrypted data still carries the risk of leakage. Homomorphic encryption is a technique that allows computation directly on encrypted data without decryption, thus reducing the risk of data leakage during sharing. In this paper, we propose a blockchain-based privacy preservation and sharing scheme for healthcare IoT data. First, we use an improved homomorphic encryption technique to encrypt and process electronic health records (EHRs), optimizing the modular exponentiation process with a fast exponentiation algorithm, enabling users to efficiently perform data computation and analysis while keeping the data encrypted. Second, we employ symmetric searchable encryption (SSE) to encrypt homomorphic keys and user identity information, and use a Bloom filter as the mapping structure between data keywords and unique identifiers. This approach enhances search efficiency while preserving data privacy, allowing for secure search and analysis on ciphertext. Finally, smart contracts are designed to implement access control during the data-sharing process, increasing the security and transparency of data sharing. Experimental results show that the proposed homomorphic encryption scheme reduces the encryption and decryption time by an average of 34% under different key sizes, while the optimized SSE technique keeps ciphertext retrieval time at a constant level. The proposed scheme provides an effective solution for secure and efficient data analysis and retrieval, ensuring privacy preservation for the secure use and sharing of medical data.

Abdulatif Alabdulatif,Ibrahim Khalil,Abdur Rahim Mohammad Forkan,Mohammed Atiquzzaman

DOI: https://doi.org/10.1109/mcom.2017.1700547

IF: 9.03

2019-01-01

IEEE Communications Magazine

Abstract:Pervasive healthcare services with smart decision making capability and ubiquitous communication technologies can forge future smart communities. Real-time health surveillance for early detection of life-threatening diseases through advanced sensing and communication technology can provide better treatment, reduce medical expenses and save lives of community residents (i.e., patients). However, the assurance of data privacy is the prime concern for such smart health technologies. This research aims to describe a privacy-preserving cloud-based system for real-time health surveillance through change detection of multiple vital health signs of smart community members. Vital signs data generated from IoT-enabled wearable devices are processed in real-time in a cloud environment. This article focuses on the development of a predictive model for the smart community considering the sensitivity of data processing in a third-party environment (e.g., cloud computing). We developed a vital sign change detection system using Holt's linear trend method (to enable prediction of data with trends) where fully homomorphic encryption is adapted to perform computations on an encrypted domain that can ensure data privacy. Moreover, to reduce the overhead of the fully homomorphic encryption method over large medical data we introduced a parallel approach for encrypted computations using a MapReduce algorithm of Apache Hadoop. We demonstrated the proposed model by evaluating some case studies for different vital signs of patients. The accuracy and efficiency of the implementation demonstrate the effectiveness of the proposed model for building a smart community.

telecommunications,engineering, electrical & electronic

Fan Wu,Xiong Li,Lili Xu,Saru Kumari,Marimuthu Karuppiah,Jian Shen

DOI: https://doi.org/10.1016/j.compeleceng.2017.04.012

IF: 4.152

2017-01-01

Computers & Electrical Engineering

Abstract:As a popular technology for Internet of Things (IoT), wearable devices are accepted widely by people. Classic wearable devices including glasses and watches collect wearers’ information which is usually private. Often, a single wearable device is not enough to see the data of the user and a mobile terminal such as a smart phone is used to match the wearable device. Also, the gathered data are often stored in the remote cloud server. Security issues become the emergent tasks and they have not been solved perfectly. Until now, there are weaknesses in traditional authentication ways, and such ways are not fit for the communication. Therefore, we propose a new and lightweight authentication scheme for wearable devices with help of cloud server. This scheme reaches mutual authentication and keeps anonymous for the devices. Compared to two recent schemes of the similar kind, ours is more secure and applicable.

Sandeep Pirbhulal,Wanqing Wu,Guanglin Li

DOI: https://doi.org/10.1109/ICDMW.2018.00026

2018-01-01

Abstract:Internet of Medical Things (IoMTs) are essential building blocks for wearable healthcare applications including bio-systems, rehabilitation robotics, and activity recognition among others. IoMTs have got immensely resource restrictions thus lightweight security is the significant requirement. One of the primary problems of existing approaches to secure inter-sensor medical data transmission referred as decentralized communication is more energy consumption of wearable devices for implementing security in IoMT. And another main concern is if key length is increased, the randomness of produced keys is reduced significantly. Thus, in this research, we have developed a security model which can provide decentralized and secure communication by considering both the abovementioned factors for IoMT based healthcare applications. Given the fact that every individual has different physical and biological functionalities, thus body features have the potentials to be used for securing IoMT. For that reason, bio-keys are generated in the proposed security model so that it will be more difficult for a hacker to eavesdrop medical information. The experimental results reveal a developed model out forms existing approaches for medical information security in terms of random keys generation and energy consumption.

Junqi Guo,Minghui Yang,Boxin Wan

DOI: https://doi.org/10.3390/sym13061043

2021-06-09

Symmetry

Abstract:With the rapid development of the Internet of Things (IoT), wearable devices have become ubiquitous and interconnected in daily lives. Because wearable devices collect, transmit, and monitor humans’ physiological signals, data privacy should be a concern, as well as fully protected, throughout the whole process. However, the existing privacy protection methods are insufficient. In this paper, we propose a practical privacy-preserving mechanism for physiological signals collected by intelligent wearable devices. In the data acquisition and transmission stage, we employed existing asymmetry encryption-based methods. In the data publishing stage, we proposed a new model based on the combination and optimization of k-anonymity and differential privacy. An entropy-based personalized k-anonymity algorithm is proposed to improve the performance on processing the static and long-term data. Moreover, we use the symmetry of differential privacy and propose the temporal differential privacy mechanism for real-time data to suppress the privacy leakage while updating data. It is proved theoretically that the combination of the two algorithms is reasonable. Finally, we use smart bracelets as an example to verify the performance of our mechanism. The experiment results show that personalized k-anonymity improves up to 6.25% in terms of security index compared with traditional k-anonymity, and the grouping results are more centralized. Moreover, temporal differential privacy effectively reduces the amount of information exposed, which protects the privacy of IoT-based users.