scholarly journals ECC-Based Lightweight Authentication And Access Control Scheme For IoT E-Healthcare

2021 ◽  
Author(s):  
Hailong Yao ◽  
Qiao Yan ◽  
Xingbing Fu ◽  
Zhibin Zhang ◽  
Caihui Lan
Keyword(s):  
Access Control ◽  
Healthcare System ◽  
Secure Communication ◽  
Wireless Body Area Network ◽  
Security Analysis ◽  
Communication Overhead ◽  
Single Server ◽  
Area Network ◽  
Control Scheme ◽  
Multi Server

Abstract The E-healthcare system has a complex architecture, diverse business types, and sensitive data security. To meet the secure communication and access control requirements in the user-medical server, user-patient, patient-medical server and other scenarios in the E-healthcare system, secure and efficient authenticated key agreement and access authorization scheme need to be studied. However, the existing multi-server solutions do not consider the authentication requirements of the Wireless Body Area Network(WBAN), and are not suitable for user-patient, patient-medical server scenarios; most of the existing WBAN authentication scheme are single-server type, which are difficult to meet the requirements of multi-server applications; the study of user-patient real-time scenarios has not received due attention. This work first reveals the structural flaws and security vulnerabilities of the existing typical schemes, and then proposes an authentication and access control architecture suitable for multiple scenarios of the E-healthcare system with separate management and business, and designs a novel ECC-based multi-factor remote authentication and access control scheme for E-healthcare using physically uncloneable function (PUF) and hash. Security analysis and efficiency analysis show that the new scheme has achieved improved functionality and higher security while maintaining low computational and communication overhead.

scholarly journals Lightweight Fine-Grained Access Control for Wireless Body Area Networks

Sensors ◽  
2020 ◽  
Vol 20 (4) ◽  
pp. 1088 ◽  
Author(s):  
Mohammad Ali ◽  
Mohammad-Reza Sadeghi ◽  
Ximeng Liu
Keyword(s):  
Access Control ◽  
Wireless Body Area Network ◽  
Control Policy ◽  
Cloud Service ◽  
Communication Overhead ◽  
Area Network ◽  
Sensitive Information ◽  
Health Providers ◽  
Body Area ◽  
Fine Grained

Wireless Body Area Network (WBAN) is a highly promising technology enabling health providers to remotely monitor vital parameters of patients via tiny wearable and implantable sensors. In a WBAN, medical data is collected by several tiny sensors and usually transmitted to a server-side (e.g., a cloud service provider) for long-term storage and online/offline processing. However, as the health data includes several sensitive information, providing confidentiality and fine-grained access control is necessary to preserve the privacy of patients. In this paper, we design an attribute-based encryption (ABE) scheme with lightweight encryption and decryption mechanisms. Our scheme enables tiny sensors to encrypt the collected data under an access control policy by performing very few computational operations. Also, the computational overhead on the users in the decryption phase is lightweight, and most of the operations are performed by the cloud server. In comparison with some excellent ABE schemes, our encryption mechanism is more than 100 times faster, and the communication overhead in our scheme decreases significantly. We provide the security definition for the new primitive and prove its security in the standard model and under the hardness assumption of the decisional bilinear Diffie-Hellman (DBDH) problem.

Provably Secure Heterogeneous Access Control Scheme for Wireless Body Area Network

2018 ◽  
Vol 42 (6) ◽  
Author(s):  
Anyembe Andrew Omala ◽  
Angolo Shem Mbandu ◽  
Kamenyi Domenic Mutiria ◽  
Chunhua Jin ◽  
Fagen Li
Keyword(s):  
Access Control ◽  
Wireless Body Area Network ◽  
Body Area Network ◽  
Area Network ◽  
Body Area ◽  
Control Scheme ◽  
Provably Secure

scholarly journals Secure Multi-Keyword Search and Access Control over Electronic Health Records in Wireless Body Area Networks

2021 ◽  
Vol 2021 ◽  
pp. 1-11
Author(s):  
Yong Ding ◽  
Hui Xu ◽  
Yujue Wang ◽  
Fang Yuan ◽  
Hai Liang
Keyword(s):  
Access Control ◽  
Mobile Devices ◽  
Keyword Search ◽  
Wireless Body Area Network ◽  
Security Analysis ◽  
Area Network ◽  
Body Area ◽  
Health Records ◽  
User Access ◽  
Ciphertext Policy

Wireless body area network (WBAN) consists of a number of sensors that are worn on patients to collect dynamic e-health records (EHRs) and mobile devices that aggregate EHRs. These EHRs are encrypted at mobile devices and then uploaded to the public cloud for storage and user access. To share encrypted EHRs with users effectively, help users retrieve EHRs accurately, and ensure EHRs confidentiality, a secure multi‐keyword search and access control (SMKS-AC) scheme is proposed, which implements encrypted EHRs access control under the ciphertext-policy attribute-based encryption (CP-ABE). SMKS-AC provides multi‐keyword search for accurate EHRs retrieval, supports the validation of decrypted EHRs, and traces and revokes the identity of users who leak private key. Security analysis shows that SMKS-AC is secure against chosen keyword and chosen plaintext attacks. Through theoretical analysis and experimental verification, the proposed SMKS-AC scheme requires less storage resources and computational costs on mobile devices than existing schemes.

scholarly journals A Novel Digital Certificate Based Remote Data Access Control Scheme in WSN

2015 ◽  
Vol 2015 ◽  
pp. 1-11 ◽  
Author(s):  
Wei Liang ◽  
Zhiqiang Ruan ◽  
Hongbo Zhou ◽  
Yong Xie
Keyword(s):  
Access Control ◽  
Control Method ◽  
Security Analysis ◽  
Data Access ◽  
Digital Certificate ◽  
Detection Methods ◽  
Communication Overhead ◽  
Data Access Control ◽  
Control Scheme ◽  
Remote Data

A digital certificate based remote data access control scheme is proposed for safe authentication of accessor in wireless sensor network (WSN). The scheme is founded on the access control scheme on the basis of characteristic expression (named CEB scheme). Data is divided by characteristics and the key for encryption is related to characteristic expression. Only the key matching with characteristic expression can decrypt the data. Meanwhile, three distributed certificate detection methods are designed to prevent the certificate from being misappropriated by hostile anonymous users. When a user starts query, the key access control method can judge whether the query is valid. In this case, the scheme can achieve public certificate of users and effectively protect query privacy as well. The security analysis and experiments show that the proposed scheme is superior in communication overhead, storage overhead, and detection probability.

LOCKING PROTOCOL FOR INFORMATION FLOW CONTROL

2004 ◽  
Vol 05 (03) ◽  
pp. 233-247 ◽  
Author(s):  
RYUNG CHON ◽  
KOUHEI TAKEDA ◽  
TOMOYA ENOKIDO ◽  
MAKOTO TAKIZAWA
Keyword(s):  
Access Control ◽  
Flow Control ◽  
Information Flow ◽  
Single Server ◽  
Role Based Access Control ◽  
Information Flow Control ◽  
Server Systems ◽  
Locking Protocol ◽  
Role Based ◽  
Multi Server

We discuss a novel role locking protocol (RLP) to prevent illegal information flow among objects in a role-based access control (RBAC) model. In this paper, we define a conflicting relation among roles "a role R1 conflicts with another role R2" to show that illegal information flow may occur if a transaction associated with role R1 is performed before another transaction with role R2. Here, we introduce a role lock on an object to abort a transaction with role R1 if another transaction with role R2 had been already performed on the object. Role locks are not released even if transactions issuing the role locks commit. After data in an object o1 flow to another object o2, if the object o1 is updated, the data in the object o2 is independent of the object o1, i.e. obsolete. A role lock on an object can be released if information brought into the object is obsolete. We discuss how to release obsolete role locks. We also discuss how to implement the role locking protocol in single-server and multi-server systems.

scholarly journals Wireless Body Area Network using Cryptography

2020 ◽  
Vol 9 (7) ◽  
pp. 1225-1229
Keyword(s):  
Secure Communication ◽  
Wireless Body Area Network ◽  
Medical Rehabilitation ◽  
Body Area Network ◽  
Area Network ◽  
Body Area ◽  
Encrypted Data ◽  
Cryptographic Algorithm ◽  
Encryption And Decryption ◽  
Medium Cost

Network security has been great concern with recent technical advancement in wireless communication. And for that, a secured system is to be developed to provide data security over wireless transmission. This paper presents wireless body area network (WBAN) with cryptographic AES algorithm which monitors patient biomedical parameters based on sensors, Arduino and ZigBee. WBAN provides real-time measurements of patients health based on biomedical sensor. AES cryptographic algorithm is implemented for secure communication over wireless network by encryption and decryption of physiological parameters. Implementation of algorithm using Arduino has been communicated by ZigBee network to provide security to the encrypted data (cipher text) on medium cost devices. This ensures security of data for medical rehabilitation and monitoring of patients. The main purpose of this paper is to help a physician to treat patients during emergency by monitoring patients round the clock (24*7). This paper is helpful for elderly and disabled people with no assistance to measure and send the results to the doctor immediately

Sign in / Sign up

Export Citation Format

Share Document