A Provably Secure Authentication and Key Agreement Protocol in Cloud-Based Smart Healthcare Environments

Wu, Tsu‐Yang; Yang, Lei; Luo, Jia-Ning; Wu, Jimmy Ming‐Tai

doi:10.1155/2021/2299632

Cited by 11 publications

(5 citation statements)

References 39 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This section reviews authentication and key agreement (AKA) protocols [ 13 , 17 , 18 , 19 , 20 , 21 , 22 , 23 , 24 , 25 , 26 ] applied in IoT, cloud computing, and IoT-enabled cloud computing environments. A summary of existing protocols is shown in Table 1 .…”

Section: Related Workmentioning

confidence: 99%

Rotating behind Security: A Lightweight Authentication Protocol Based on IoT-Enabled Cloud Computing Environments

Meng

Kumari

Zhang

2022

Sensors

Self Cite

View full text Add to dashboard Cite

With the rapid development of technology based on the Internet of Things (IoT), numerous IoT devices are being used on a daily basis. The rise in cloud computing plays a crucial role in solving the resource constraints of IoT devices and in promoting resource sharing, whereby users can access IoT services provided in various environments. However, this complex and open wireless network environment poses security and privacy challenges. Therefore, designing a secure authentication protocol is crucial to protecting user privacy in IoT services. In this paper, a lightweight authentication protocol was designed for IoT-enabled cloud computing environments. A real or random model, and the automatic verification tool ProVerif were used to conduct a formal security analysis. Its security was further proved through an informal analysis. Finally, through security and performance comparisons, our protocol was confirmed to be relatively secure and to display a good performance.

show abstract

Section: Related Workmentioning

confidence: 99%

Rotating behind Security: A Lightweight Authentication Protocol Based on IoT-Enabled Cloud Computing Environments

Meng

Kumari

Zhang

2022

Sensors

Self Cite

View full text Add to dashboard Cite

show abstract

“…As security is the primary concern in many applications like VANETS, IoT, industrial IoT, healthcare industry, and so forth, key agreement plays a vital role in every application, where it can be used in securing sensitive data. Many researchers have proposed key agreements schemes suitable for the applications mentioned above 14–28 . Duncan 29 described many authentication methods and protocols in 2001, beginning with password protection and ending with digital signatures that handle security challenges such as SSL, IPSEC, and Kerberos.…”

Section: Related Workmentioning

confidence: 99%

Secure lightweight multi‐party key agreement based on hyperelliptic curve Diffie–Hellman for constraint networks

Naresh¹,

Reddi²

2022

Concurrency and Computation

View full text Add to dashboard Cite

With recent developments in hyperelliptic curve cryptographic system (HECC) processing and the proposed work, the myth that HECC is not suited for practical applications in constrained networks is dispelled. This article proposes dynamic authenticated contributory group key agreement (DACGKA) protocol using HEC-DH. The DACGKA is less costly and ideally appropriate for resource-restricted networks such as VANETs, MANETs, and WSNs because of its lesser key sizes and advancements in operational processing. The suggested protocol is implemented across a finite field using an HEC of genus 1 (ECC), genus 2, and genus 3, with promising results, including a significant reduction in key size and exchange overhead, an increase in key safety, and a broader range of applicability. According to a comparison of the proposed approach on different genus curves, HECC over genus 2 with a suitable key length can be applied for memory and power restricted devices to increase data secrecy and system efficiency. Further, HECC can outperform ECC for low-cost, secure group communication applications.As a part of security analysis, first, we proved that each coordinate of HEC-DH secret value is as hard as the entire DH value, and then concrete security proofs based on the HEC-DLP were established. K E Y W O R D Sconstraint networks, group key agreement, hyperelliptic curves, Jacobian, key exchange operations INTRODUCTIONA range of collaborative applications focusing on secure group communication (SGC) is becoming a more active study field in cryptography. It is based on specific distribution and management strategies. All group key agreement (GKA) protocols can be classified into one of two groups. The key is generated by a single group member and distributed to the remaining members in the first. However, it necessitates the involvement of a reliable third party and a safe route between a trustworthy third party and the group members. As a result, key distribution and administration become more complicated. On the other hand, contributory group key agreements (CGKAs) are GKAs in which each member gives a portion of the group key (GK). The focus of this work is on a protocol that falls into the second category.GKA allows SGC across an unprotected, open network by producing the GK. Well-established GKA 1-10 allows participants to agree on a GK in the presence of an alive opponent using signature techniques. To guarantee confidentiality and integrity in the SGC, group members use their authenticated group key with cryptographic techniques.The simplicity and beauty of the 2-party Diffie-Hellman (DH) key agreement 11 has prompted several researchers to apply it to group situations.The majority of GKA protocols are based on DLP. On the other hand, Constraint networks require longer key lengths and higher computational demands. Elliptic curve cryptography (ECC) 12,13 is the natural solution to this problem since, with reduced key sizes, cheaper computational costs, and increased efficiency, it can provide good security.

show abstract

“…Kumari et al [31] proposed an efficient AKA protocol for smart healthcare and cloud environments, utilizing ECC. However, Wu et al [32] demonstrated that their protocol suffered from several security vulnerabilities, including impersonation, known session specific temporary information (KSSTI), and desynchronization attacks. Subsequently, Wu et al proposed an alternative AKA protocol for smart healthcare, addressing the identified security issues.…”

Section: Introductionmentioning

confidence: 99%

Enhancing the Security: A Lightweight Authentication and Key Agreement Protocol for Smart Medical Services in the IoHT

Wu,

Wang,

Chen

2023

Mathematics

Self Cite

View full text Add to dashboard Cite

The Internet of Things (IoT) has witnessed significant growth with advancements in Internet and wireless technologies. In the medical field, the Internet of Health Things (IoHT) has emerged as an extension of the IoT, enabling the exchange of remote data and real-time monitoring of patients’ health conditions. Through the IoHT, doctors can promptly provide diagnoses and treatment for patients. As patient data are transmitted over public channels, security issues may arise, necessitating security mechanisms. Recently, Amintoosi et al. proposed an authentication protocol for smart medical services in the IoHT. However, their protocol exhibited security weaknesses, including vulnerabilities to privileged insider attacks. To address the security concerns, we propose an enhanced authentication and key agreement protocol. The security of our protocol is rigorously analyzed using the Real-Or-Random model, informal security analysis, and the AVISPA tool. Finally, the results of our analysis demonstrate that our proposed protocol ensures sufficient security while maintaining a performance level similar to existing protocols.

show abstract

A Provably Secure Authentication and Key Agreement Protocol in Cloud-Based Smart Healthcare Environments

Cited by 11 publications

References 39 publications

Rotating behind Security: A Lightweight Authentication Protocol Based on IoT-Enabled Cloud Computing Environments

Rotating behind Security: A Lightweight Authentication Protocol Based on IoT-Enabled Cloud Computing Environments

Secure lightweight multi‐party key agreement based on hyperelliptic curve Diffie–Hellman for constraint networks

Enhancing the Security: A Lightweight Authentication and Key Agreement Protocol for Smart Medical Services in the IoHT

Contact Info

Product

Resources

About