Abstract:Reinforcement of the Internet of Medical Things (IoMT) network security has become extremely significant as these networks enable both patients and healthcare providers to communicate with each other by exchanging medical signals, data, and vital reports in a safe way. To ensure the safe transmission of sensitive information, robust and secure access mechanisms are paramount. Vulnerabilities in these networks, particularly at the access points, could expose patients to significant risks. Among the possible security measures, biometric authentication is becoming a more feasible choice, with a focus on leveraging regularly-monitored biomedical signals like Electrocardiogram (ECG) signals due to their unique characteristics. A notable challenge within all biometric authentication systems is the risk of losing original biometric traits, if hackers successfully compromise the biometric template storage space. Current research endorses replacement of the original biometrics used in access control with cancellable templates. These are produced using encryption or non-invertible transformation, which improves security by enabling the biometric templates to be changed in case an unwanted access is detected. This study presents a comprehensive framework for ECG-based recognition with cancellable templates. This framework may be used for accessing IoMT networks. An innovative methodology is introduced through non-invertible modification of ECG signals using blind signal separation and lightweight encryption. The basic idea here depends on the assumption that if the ECG signal and an auxiliary audio signal for the same person are subjected to a separation algorithm, the algorithm will yield two uncorrelated components through the minimization of a correlation cost function. Hence, the obtained outputs from the separation algorithm will be distorted versions of the ECG as well as the audio signals. The distorted versions of the ECG signals can be treated with a lightweight encryption stage and used as cancellable templates. Security enhancement is achieved through the utilization of the lightweight encryption stage based on a user-specific pattern and XOR operation, thereby reducing the processing burden associated with conventional encryption methods. The proposed framework efficacy is demonstrated through its application on the ECG-ID and MIT-BIH datasets, yielding promising results. The experimental evaluation reveals an Equal Error Rate (EER) of 0.134 on the ECG-ID dataset and 0.4 on the MIT-BIH dataset, alongside an exceptionally large Area under the Receiver Operating Characteristic curve (AROC) of 99.96% for both datasets. These results underscore the framework potential in securing IoMT networks through cancellable biometrics, offering a hybrid security model that combines the strengths of non-invertible transformations and lightweight encryption.

What problem does this paper attempt to address?

The problem that this paper attempts to solve is to implement a more secure biometric authentication method in the Internet of Medical Things (IoMT) network. Specifically, the paper focuses on how to use electrocardiogram (ECG) signals to generate revocable biometric templates in order to improve the security of the IoMT network and prevent the original biometric data from being misappropriated or attacked. ### Background and Problems 1. **Security Requirements of IoMT Networks** - With the development of IoMT technology, data exchanges between patients and medical providers are becoming more and more frequent. These data include medical signals, data, and vital signs reports. - Ensuring the secure transmission of these sensitive information is crucial because any security vulnerability may pose a serious risk to patients. 2. **Existing Biometric Authentication Methods** - Biometric authentication is an effective access control mechanism, especially by using continuously monitored biomedical signals, such as electrocardiogram (ECG) signals. - However, there is a major problem in traditional biometric systems: if the biometric template storage space is hacked, the original biometric features may be lost. 3. **The Concept of Revocable Biometrics** - Revocable biometrics improve security by using encryption or irreversible transformation to generate new biometric templates. - These templates can be changed when unauthorized access is detected, thus protecting the original biometric features from being leaked. ### Main Contributions of the Paper 1. **Innovative Framework Design** - The paper proposes an ECG - signal - based revocable biometric identification framework that combines blind signal separation and lightweight encryption. - This framework combines nonlinear transformation and lightweight encryption to generate irreversible biometric templates, improving the security and privacy protection capabilities of the system. 2. **Specific Methods** - **Signal Separation Stage**: Use a 2 × 2 blind signal separation algorithm to process ECG signals and auxiliary audio signals to generate two output signals with low correlation. These output signals are distorted versions of the original ECG signals. - **Lightweight Encryption Stage**: Use XOR operation and user - specific keys to encrypt the distorted ECG signals to further enhance security. 3. **Experimental Verification** - This framework was tested on the ECG - ID and MIT - BIH datasets. The results show that the Equal Error Rate (EER) is 0.134 and 0.4 respectively, and the Area under the Receiver Operating Characteristic curve (AROC) reaches 99.96%. - These results indicate that this framework has great potential in improving the security of IoMT networks. ### Conclusion By proposing an ECG - signal - based revocable biometric identification framework that combines blind signal separation and lightweight encryption, this paper effectively solves the security problems in IoMT networks. This framework not only improves the accuracy of authentication but also enhances user privacy protection, providing reliable security for future Internet of Medical Things applications.

Securing Internet-of-Medical-Things networks using cancellable ECG recognition

ECG Authentication Method Based on Parallel Multi-Scale One-Dimensional Residual Network with Center and Margin Loss.

Cancellable Template Design for Privacy-Preserving EEG Biometric Authentication Systems

A joint resource-aware and medical data security framework for wearable healthcare systems

A Robust and Reusable Ecg-Based Authentication and Data Encryption Scheme for Ehealth Systems

Electrocardiogram (Ecg): A New Burgeoning Utility For Biometric Recognition

Encryption of ECG signals for telemedicine applications

ECG-Cryptography and Authentication in Body Area Networks

Efficient cancelable authentication system based on DRPE and adaptive filter

Secure and resource-efficient communications for telemedicine systems

Symmetric Cryptography With a Chaotic Map and a Multilayer Machine Learning Network for Physiological Signal Infosecurity: Case Study in Electrocardiogram

ECG Biometric Recognition: Template-Free Approaches Based on Deep Learning

CardioGuard: AI-driven ECG authentication hybrid neural network for predictive health monitoring in telehealth systems

Advanced biometric system security: a novel hybrid approach integrating optical asymmetric PTFT and symmetric cipher techniques

Real-time privacy preserving disease diagnosis using ECG signal

ECG authentication system design incorporating a convolutional neural network and generalized S-Transformation

Utilization of a hierarchical electrocardiogram classification model for enhanced biometric identification

Robust Patient Information Embedding and Retrieval Mechanism for ECG Signals

An efficient multi-biometric cancellable biometric scheme based on deep fusion and deep dream

Secure Exchange of Medical Data Using a Novel Real-Time Biometric-Based Protection and Recognition Method

Enhanced Biometric Template Protection Schemes for Securing Face Recognition in IoT Environment