Rong Fan,Ling-di Ping,Jian-Qing Fu,Xue-zeng Pan

DOI: https://doi.org/10.1109/wcsp.2010.5633690

2010-01-01

Abstract:Recently, Wireless Body Area Networks (WBANs) have been an attractive platform for pervasive computing and communication. Since the patient-related data is significance for medical diagnosis and patients' health-care, the security of distributed data storage is critical need for applications. However, the distributed architecture makes it challenging to build a secure and efficient data storage system due to the resource-constrained nature of sensor node. Besides, due to the lack of physical protection, WBANs are vulnerable to attacks when deployed in hostile environments. In order to address the challenges, we propose a novel secure and efficient data storage scheme with dynamic integrity checking in this paper. Based on the policies of multiple secret sharing, we first propose a secure and efficient patient-related data storage and access scheme for WBANs. Furthermore, to dynamically check the integrity of the distributed data shares, we then propose an efficient data integrity verification scheme based on orthonormal vectors. Finally, the security and performance analysis shows that the proposed scheme is secure and practical for WBANs.

Mengxia Shuai,Bin Liu,Nenghai Yu,Ling Xiong,Changhui Wang

DOI: https://doi.org/10.1016/j.jisa.2020.102499

IF: 4.96

2020-01-01

Journal of Information Security and Applications

Abstract:As a significant part of electronic health, wireless body area networks (WBANs) have greatly improved the quality and efficiency of healthcare. With the help of WBANs, comprehensive and uninterrupted health monitoring becomes possible, and the user can enjoy the medical services provided by application providers with no limitations on space and time. Since the physiological data of user are transmitted on the public channels, it is essential to protect user’s privacy and ensure secure communications in WBANs. In the past few years, several authentication schemes were proposed to solve the security issues of transferring data in WBANs. However, most of these schemes are not efficient and secure enough. As a step towards this direction, in this paper, we propose an efficient and privacy-preserving authentication scheme for WBANs using elliptic curve cryptography (ECC). In the proposed scheme, the method of certificateless authentication based on identity-based cryptography is adopted, which makes it suitable for multi-server architecture without online third party participation. Security analysis and comparisons with five related authentication schemes demonstrate that the proposed privacy-preserving authentication scheme can not only provide the desired security features, but also reduce the computation cost effectively.

Rong Fan,Lingdi Ping,JianQing Fu,Xuezeng Pan

DOI: https://doi.org/10.1109/PACCS.2010.5626600

2010-01-01

Abstract:As wireless sensor networks (WSNs) are susceptible to attacks and sensor nodes have limited resources, designing a secure and efficient user authentication protocol for WSNs is a difficult task. Considering that most future large-scale WSNs follow a two-tiered architecture, we propose an efficient and Denial-of-Service resistant user authentication scheme for two-tiered WSNs, which imposes very light computational load and requires simple operations such as one-way hash function and exclusive-OR operations. In addition, there is a growing requirement for preserving user anonymity recently. Thus we introduce pseudonym identity for each user which is concealed in login messages. And through clever design, our proposed scheme can prevent from smart card breach. Moreover, the security analysis on this scheme demonstrates that our proposed scheme enjoys security attributes such as preventing the various kinds of attacks and user anonymity. Finally, performance analysis shows that our proposed scheme is simple and efficient.

Jingwei Liu,Zonghua Zhang,Xiaofeng Chen,Kyung Sup Kwak

DOI: https://doi.org/10.1109/tpds.2013.145

IF: 5.3

2014-02-01

IEEE Transactions on Parallel and Distributed Systems

Abstract:Wireless body area network (WBAN) has been recognized as one of the promising wireless sensor technologies for improving healthcare service, thanks to its capability of seamlessly and continuously exchanging medical information in real time. However, the lack of a clear in-depth defense line in such a new networking paradigm would make its potential users worry about the leakage of their private information, especially to those unauthenticated or even malicious adversaries. In this paper, we present a pair of efficient and light-weight authentication protocols to enable remote WBAN users to anonymously enjoy healthcare service. In particular, our authentication protocols are rooted with a novel certificateless signature (CLS) scheme, which is computational, efficient, and provably secure against existential forgery on adaptively chosen message attack in the random oracle model. Also, our designs ensure that application or service providers have no privilege to disclose the real identities of users. Even the network manager, which serves as private key generator in the authentication protocols, is prevented from impersonating legitimate users. The performance of our designs is evaluated through both theoretic analysis and experimental simulations, and the comparative studies demonstrate that they outperform the existing schemes in terms of better trade-off between desirable security properties and computational overhead, nicely meeting the needs of WBANs.

computer science, theory & methods,engineering, electrical & electronic

Rong Fan,Dao-jing He,Xue-zeng Pan,Ling-di Ping

DOI: https://doi.org/10.1631/jzus.c1000377

2011-01-01

Abstract:Wireless sensor networks (WSNs) are vulnerable to security attacks due to their deployment and resource constraints. Considering that most large-scale WSNs follow a two-tiered architecture, we propose an efficient and denial-of-service (DoS)-resistant user authentication scheme for two-tiered WSNs. The proposed approach reduces the computational load, since it performs only simple operations, such as exclusive-OR and a one-way hash function. This feature is more suitable for the resource-limited sensor nodes and mobile devices. And it is unnecessary for master nodes to forward login request messages to the base station, or maintain a long user list. In addition, pseudonym identity is introduced to preserve user anonymity. Through clever design, our proposed scheme can prevent smart card breaches. Finally, security and performance analysis demonstrates the effectiveness and robustness of the proposed scheme.

Ruixue Sun,Zhiguo Shi,Rongxing Lu,Jian Qiao,Xuemin (Sherman) Shen

DOI: https://doi.org/10.1109/WCSP.2012.6542795

2012-01-01

Abstract:The 60 GHz ultra-high-speed Wireless Personal Area Network (WPAN) has received considerable attention in recent years. Information security, which ensures secure communication within the network, is of particular importance. In this paper, we propose an efficient lightweight key management scheme for 60 GHz WPAN, which deploys secure encryption algorithms and one-way hash function to achieve efficient key exchange and updating managements. Detailed security analysis has shown its security provisions. In addition, performance evaluation is also provided to demonstrate its efficiency in terms of session key distribution and group key updating.

Mengxia Shuai,Bin Liu,Nenghai Yu,Ling Xiong

DOI: https://doi.org/10.1155/2019/8145087

IF: 1.968

2019-01-01

Security and Communication Networks

Abstract:On-body wireless networks (oBWNs) play a crucial role in improving the ubiquitous healthcare services. Using oBWNs, the vital physiological information of the patient can be gathered from the wearable sensor nodes and accessed by the authorized user like the health professional or the doctor. Since the open nature of wireless communication and the sensitivity of physiological information, secure communication has always been the vital issue in oBWNs-based systems. In recent years, several authentication schemes have been proposed for remote patient monitoring. However, most of these schemes are so susceptible to security threats and not suitable for practical use. Specifically, all these schemes using lightweight cryptographic primitives fail to provide forward secrecy and suffer from the desynchronization attack. To overcome the historical security problems, in this paper, we present a lightweight and secure three-factor authentication scheme for remote patient monitoring using oBWNs. The proposed scheme adopts one-time hash chain technique to ensure forward secrecy, and the pseudonym identity method is employed to provide user anonymity and resist against desynchronization attack. The formal and informal security analyses demonstrate that the proposed scheme not only overcomes the security weaknesses in previous schemes but also provides more excellent security and functional features. The comparisons with six state-of-the-art schemes indicate that the proposed scheme is practical with acceptable computational and communication efficiency.

Krishna Teja Vadikari,Arunkumar Rajasekaran,Vamshi Yatala,Sai Sunneehith,Rahul Potheireddy

DOI: https://doi.org/10.1109/ICDCOT61034.2024.10515957

2024-03-15

Abstract:Wireless Body Area Networks (WBANs) have revolutionized wearable sensor use for swift medical diagnosis and treatment. This study underscores the need for robust solutions to protect user privacy and authentication security during wireless health data exchange. Operating in an environment where wearable devices consistently collect private data, WBAN s highlight the importance of privacy preservation. Integrating WBANs with privacy-preserving methods and anonymous authentication allows users to confidently share data without compromising identities. These builds trust. For secure information sharing between patients and doctors, the work introduces an anonymous privacy-preserving authentication mechanism, considering computational and communication costs. The approach's effectiveness is validated using the Cygwin software tool, offering a pathway for a secure and considerate future in healthcare monitoring. This research contributes to the evolving landscape of secure and private data exchange in the context ofWBANs.

Medicine,Computer Science

Saba Marandi,Farokhlagha Moazami,Amir Malekinezhad

DOI: https://doi.org/10.1007/s12083-024-01686-y

IF: 3.488

2024-05-24

Peer-to-Peer Networking and Applications

Abstract:In the medical field, a wearable body area network is a wireless network in which wearable sensors are implemented in or on patients' bodies to gather their sensitive health information and send it to the medical servers accordingly. These multi-functional sensors provide all users with optimized and convenient services, such as homecare monitoring of people's health conditions. Ensuring the privacy of users' information during its transfer between users and medical personnel necessitates a secure wireless environment. Mobility and insecure communication channels introduce a substantial threat from unauthorized entities, jeopardizing the privacy of the transferred information within this network. To mitigate this risk, researchers have proposed various authentication and key agreement schemes, aiming to enhance the safety of the communication channel and preserve user privacy. Additionally, the wearable body area network comprises resource-constrained devices, emphasizing the need for lightweight protocols to guarantee the transmitted information's authenticity, confidentiality, and integrity. Ankur Gupta and his colleagues recently proposed a mutual authentication and key agreement protocol and proved its security against well-known attacks. However, after in-depth analysis, we discovered that their proposed protocol is vulnerable to sensor node impersonation and sensor node capture attacks. In this paper, we propose a new lightweight mutual authentication and key agreement scheme in WBAN based on basic symmetric cryptosystems (Exclusive OR and Hash functions) to overcome the security weaknesses in Gupta's protocol and provide indispensable security for communicating data. Unlike Gupta's protocol, our proposed scheme is safe in the CK-adversary threat model. The security of the presented scheme is evaluated using BAN-Logic, the AVISPA tool, and the Real or Random (ROR) model. Overall, the performance comparison of the proposed protocol with the existing related protocols depicts that our new scheme is more efficient than others in terms of communication and computational complexities.

computer science, information systems,telecommunications

Yimin Wang,Yang Liu

DOI: https://doi.org/10.1109/jsyst.2022.3152742

IF: 4.802

2022-01-01

IEEE Systems Journal

Abstract:Wireless body area networks (WBANs) are an essential part of health-care system. It collects the patients biomedical data through sensors and sends the data to the remote doctor. Based on these data, remote doctors can provide the patient with a detailed diagnosis and suitable treatment. However, in wireless communication environment, WBANs may be affected by various attacks, which leads to privacy leakage. Before WBANs come into application, data confidentiality and patient privacy are the main challenges for us. Therefore, we proposed a revocable certificateless authentication scheme that effectively overcomes these problems. In this scheme, to realize large-scale applications, we divided WBANs into several independent areas, and each area is responsible for the patients in its own area. Once a malicious user appears, revocation center can change the key of its own area to achieve efficient revocation. This approach disperses the management burden of the network manager and realizes conditional privacy-preserving. Besides, bilinear pairing is not used in this scheme, which greatly reduces the computational cost. It is especially important for clients with limited capabilities in WBANs. It is proved that the security of this scheme is equivalent to the assumption of elliptic curve discrete logarithm in a random oracle.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Fan Rong,Ping Lingdi,Fu Jianqing,Pan Xuezeng

DOI: https://doi.org/10.3969/j.issn.1000-0801.2010.10.015

2010-01-01

Abstract:In the applications of unattended wireless sensor networks(UWSN),sensor nodes always are deployed in hostile area and are difficult to communicate with each other.Besides,the network user need abstract sensed data not real time data in some scene.Thus the sensor nodes need to store the sensed data until receiving the request of data.However,the distributed architecture makes it challenging to build a secure and efficient data storage system due to the resource-constrained nature of sensor node.Besides,due to the lack of physical protection,WBAN are vulnerable to attacks when deployed in hostile environments.In order to address the challenges,we propose a novel secure and efficient data storage scheme with dynamic integrity checking in this paper.Based on the policies of multiple secret sharing,we first propose secure and efficient patient-related data storage and access scheme for UWSN.Furthermore,to dynamically check the integrity of the distributed data shares,we then propose an efficient data integrity verification scheme based on orthonormal vectors.Finally,the security and performance analysis shows that the proposed scheme is secure and practical for UWSN.

Mengxia Shuai,Nenghai Yu,Hongxia Wang,Ling Xiong,Yue Li

DOI: https://doi.org/10.4018/joeuc.20210501.oa1

2021-01-01

Journal of Organizational and End User Computing

Abstract:Security and privacy issues in wireless medical sensor networks (WMSNs) have attracted lots of attention in both academia and industry due to the sensitiveness of medical system. In the past decade, extensive research has been carried out on these security issues, but no single study exists that addresses them adequately, especially for some important security properties, such as user anonymity and forward secrecy. As a step towards this direction, in this paper, the authors propose a lightweight three -factor anonymous authentication scheme with forward secrecy for personalized healthcare applications using only the lightweight cryptographic primitives. The proposed scheme adopts pseudonym identity technique to protect users' real identities and employs one-way hash chain technique to ensure forward secrecy. Analysis and comparison results demonstrate that the proposed scheme can not only reduce execution time by 34% as compared with the most effective related schemes, but also achieve more security and functional features.

Xiyao Liu,Yu Ge,Yuesheng Zhu,Dajun Wu

DOI: https://doi.org/10.3837/tiis.2014.12.023

2014-01-01

KSII Transactions on Internet and Information Systems

Abstract:Integrity authentication of biometric data in Wireless Body Area Network (WBAN) is a critical issue because the sensitive data transmitted over broadcast wireless channels could be attacked easily. However, traditional cryptograph-based integrity authentication schemes are not suitable for WBAN as they consume much computational resource on the sensor nodes with limited memory, computational capability and power. To address this problem, a novel lightweight integrity authentication scheme based on reversible watermark is proposed for WBAN and implemented on a TinyOS-based WBAN test bed in this paper. In the proposed scheme, the data is divided into groups with a fixed size to improve grouping efficiency; the histogram shifting technique is adopted to avoid possible underflow or overflow; local maps are generated to restore the shifted data; and the watermarks are generated and embedded in a chaining way for integrity authentication. Our analytic and experimental results demonstrate that the integrity of biometric data can be reliably authenticated with low cost, and the data can be entirely recovered for healthcare applications by using our proposed scheme.

Jianhong Zhang,Chenghe Dong

DOI: https://doi.org/10.1109/tnse.2022.3205044

IF: 6.6

2023-01-10

IEEE Transactions on Network Science and Engineering

Abstract:Wireless body area networks (WBANs) provide healthcare providers with early warning of medical emergencies by monitoring vital parameters of a patient's body with wearable devices embedded with biosensors. However, the resource-constrained nature of WBAN devices makes the data collected from them vulnerable to internal and external attacks during transmission. By aggregating medical data, data aggregation technology is used to conduct statistical analysis of the data and achieve confidentiality of patient information, which can help doctors make the correct diagnosis and assist medical insurance companies choose the right insurance for patients. However, the existing data aggregation schemes are inefficient or prone to potential safety risks to patients due to their high computational intensity and known identity of recipients. To address it, we propose a privacy-preserving health data aggregation scheme in the multi-receiver setting, which not only securely collects health data from IoT wearable devices but also supports the anonymity of multiple receivers while avoiding time-consuming pairing operations. Since the patient's health data and the recipient's identities are transmitted in cipher-text, it effectively prevents data leakage and achieves privacy protection of identity information among recipients. Compared with several existing schemes, the proposed scheme not only achieves anonymity of the collected data and the receivers' identities,but also makes it lightweight. Furthermore, experimental results demonstrate that the proposed scheme is cost-efficient in an all-around performance.

engineering, multidisciplinary,mathematics, interdisciplinary applications

Zhaoyang Zhang,Honggang Wang,Athanasios V. Vasilakos,Hua Fang

DOI: https://doi.org/10.4108/icst.bodynets.2013.253689

2013-01-01

Abstract:Wireless Body Area Networks (WBANs) are the core of components of future m-Health system and is playing a crucial role in healthcare applications. A key requirement for such applications is secure communications between body sensors. This paper presents a novel key agreement scheme which allows wireless body sensors in WBANs to share a common key generated using wireless channel information. Unlike traditional biometric based security approach, the proposed key agreement does not need extra hardware, which can secure data communications in a plug-n-play manner. Our experimental results show that the proposed scheme is feasible for WBANs.

Martin Konan,Wenyong Wang

DOI: https://doi.org/10.3390/s19071608

IF: 3.9

2019-04-03

Sensors

Abstract:The current advances in cloud-based services have significantly enhanced individual satisfaction in numerous modern life areas. Particularly, the recent spectacular innovations in the wireless body area networks (WBAN) domain have made e-Care services rise as a promising application field, which definitely improves the quality of the medical system. However, the forwarded data from the limited connectivity range of WBAN via a smart device (e.g., smartphone) to the application provider (AP) should be secured from an unapproved access and alteration (attacker) that could prompt catastrophic consequences. Therefore, several schemes have been proposed to guarantee data integrity and privacy during their transmission between the client/controller (C) and the AP. Thereby, numerous effective cryptosystem solutions based on a bilinear pairing approach are available in the literature to address the mentioned security issues. Unfortunately, the related solution presents security shortcomings, where AP can with ease impersonate a given C. Hence, this existing scheme cannot fully guarantee C’s data privacy and integrity. Therefore, we propose our contribution to address this data security issue (impersonation) through a secured and efficient remote batch authentication scheme that genuinely ascertains the identity of C and AP. Practically, the proposed cryptosystem is based on an efficient combination of elliptical curve cryptography (ECC) and bilinear pairing schemes. Furthermore, our proposed solution reduces the communication and computational costs by providing an efficient data aggregation and batch authentication for limited device’s resources in WBAN. These additional features (data aggregation and batch authentication) are the core improvements of our scheme that have great merit for limited energy environments like WBAN.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Jian Shen,Ziyuan Gui,Xiaofeng Chen,Jun Zhang,Yang Xiang

DOI: https://doi.org/10.1109/tdsc.2020.3025288

2020-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:The rapid development of low-power integrated circuits, wireless communication, intelligent sensors, and microelectronics has allowed the realization of wireless body area networks (WBANs), which can monitor patients' vital body parameters remotely in real time to offer timely treatment. These vital body parameters are related to patients' life and health; and these highly private data are subject to many security threats. To guarantee privacy, many secure communication protocols have been proposed. However, most of these protocols have a one-to-one structure in extra-body communication and cannot support multidisciplinary team (MDT). Hence, we propose a lightweight and certificateless multi-receiver secure data transmission protocol for WBANs to support MDT treatment in this article. In particular, a novel multi-receiver certificateless generalized signcryption (MR-CLGSC) scheme is proposed that can adaptively use only one algorithm to implement one of three cryptographic primitives: signature, encryption or signcryption. Then, a multi-receiver secure data transmission protocol based on the MR-CLGSC scheme with many security properties, such as data integrity and confidentiality, non-repudiation, anonymity, forward and backward secrecy, unlinkability and data freshness, is designed. Both security analysis and performance analysis show that the proposed protocol for WBANs is secure, efficient, and highly practical.

Ming Luo,Xingtong Hu,Yi Luo

DOI: https://doi.org/10.1007/s10916-020-01598-3

IF: 4.92

2020-06-15

Journal of Medical Systems

Abstract:Wireless body area networks (WBANs) have become a prospective technology for the next generation healthcare services, in which tiny sensors are placed either on the skin or in the body of human to transmit real-time monitored data to the medical service provider (MSP). In order to protect the transmitted data from leakage, forgery or alteration, constructing a secure data transmission scheme for WBANs that achieves confidentiality, authentication and integrity is necessary. Also, in practical application of WBANs, patient and MSP are in different domain networks in general. In this article, we first design a cross-domain certificateless signcryption (CDCS) scheme, then an efficient cross-domain data transmission scheme for WBANs is proposed based on the new CDCS scheme. The data transmission scheme realizes authentication, confidentiality, anonymity, nonrepudiation, integrity, registration security and KSTI security. Compared to present two security schemes for the WBANs based on certificateless signcryption, our designed scheme entitles patient and MSP to use different cryptographic parameter in different domain networks. Moreover, the new scheme has advantages in communication overhead and computation cost.

health care sciences & services,medical informatics

Weifeng Long,Lunzhi Deng,Jiwen Zeng,Yan Gao,Tianxiu Lu

DOI: https://doi.org/10.3390/s24154899

2024-07-28

Abstract:A Wireless Body Area Network (WBAN), introduced into the healthcare sector to improve patient care and enhance the efficiency of medical services, also brings the risk of the leakage of patients' privacy. Therefore, maintaining the communication security of patients' data has never been more important. However, WBAN faces issues such as open medium channels, resource constraints, and lack of infrastructure, which makes the task of designing a secure and economical communication scheme suitable for WBAN particularly challenging. Signcryption has garnered attention as a solution suitable for resource-constrained devices, offering a combination of authentication and confidentiality with low computational demands. Although the advantages offered by existing certificateless signcryption schemes are notable, most of them only have proven security within the random oracle model (ROM), lack public ciphertext authenticity, and have high computational overheads. To overcome these issues, we propose a certificateless anonymous signcryption (CL-ASC) scheme suitable for WBAN, featuring anonymity of the signcrypter, public verifiability, and public ciphertext authenticity. We prove its security in the standard model, including indistinguishability, unforgeability, anonymity of the signcrypter, and identity identifiability, and demonstrate its superiority over relevant schemes in terms of security, computational overheads, and storage costs.

Yi Li,Yuling Tian

DOI: https://doi.org/10.1109/jsyst.2022.3152561

IF: 4.802

2022-01-01

IEEE Systems Journal

Abstract:In recent years, wireless sensor networks (WSNs) have been extensively used in many fields, which provide great convenience for peoples daily work and life. With the popularity of WSNs, peoples demands for related authentication protocols are developing in a comprehensive and perfect direction, and relevant designs are focusing more on two aspects: security and performance. However, current research cannot avoid the problem that security and efficiency are not compatible. Some studies use time-consuming cryptographic structures for security, while most lightweight schemes are designed without considering certain security properties, such as perfect forward secrecy, the resistance to known session-specific temporary information attack, etc. In our view, this conflict can be resolved by using lightweight cryptography primitives with special attention to protocol vulnerabilities and ever-evolving security requirements of people. By abandoning all unnecessary cryptographic structures, we propose a comprehensive lightweight three-factor authentication protocol with various security requirements, including adaptive privacy preservation, which is suitable for the user-friendly scenario in the WSN. Through security analysis, real-or-random (ROR) model proof, Automated Validation of Internet Security Protocols and Applications experimental verification, and security aspect comparison, it is proved that our protocol is superior in the security aspect. The performance experiment under MIRACL library shows that this study has advantages in performance compared with other recent research.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science