Biometric-Based Packet Validation Scheme for Body Area Network Smart Healthcare Devices

The adoption of electronic healthcare in hospital environment can potentially reduce costs and improve the quality of life of the patients. However, numerous security and privacy issues arise when sensitive patient data is shared among multiple devices and users. Owing to its vulnerable nature, electronic health records seem to be more attractive to attackers compared to other forms of records such as financial transactions. Consequently, the patient data collected at the sensors, transmitted across communication channels and residing in hospital servers is susceptible to various threats. The goal of this paper was to carry out a survey of the electronic healthcare environment and attempt to understand the various weaknesses that can be exploited. This is followed by some descriptions of the various preventive mechanisms as well as the noted gaps. Therefore, numerous recommendations are given that are deemed fit for enhanced security and privacy posture in electronic healthcare domain.

Section: Key Findingsmentioning

confidence: 99%

A survey of healthcare sector digitization strategies: Vulnerabilities, countermeasures and opportunities

Nyakina¹,

Taher²

2023

“…On the other hand, the RFID based mutual authentication protocol in [169] requires the execution of complex elliptic curve encryption. As such, it incurs high computing overheads [170], which is inefficient for the tags. This problem can be addressed by the multi-server environment security protocol in [171].…”

Section: Security Schemes For Cloud Environmentmentioning

confidence: 99%

Cloud computing communication environment security and performance: Challenges and probable solutions

Kanini¹

2023

The adoption of cloud computing has continued to grow, owing to its broad network access, remote accessibility, scalability, on demand self-service, rapid elasticity and resource pooling. In this environment, numerous devices are deployed to access the cloud data and services. This potentially increases the attack services, more so in public clouds. As such, the biggest challenge is the secure data exchange over insecure open network channels. This issue has seen the development of numerous security solutions over the recent past. In this paper, a survey of these security schemes, techniques and methods is provided. The findings indicate that majority of these methods have vulnerabilities that expose users to many attacks. Additionally, some of these security solutions have extremely high complexities that make the cloud communications inefficient.

“…However, effectiveness [238] of the assurance techniques is a factor that is difficult to measure in the operational phase [239]. Therefore, a methodology is required to establish whether the security controls [240]- [244] are adequate and appropriate for specific systems. To attain this, it is essential for these factors to be considered while developing a security assurance technique.…”

Section: Research Gaps and Recommendationsmentioning

confidence: 99%

Software security models and frameworks: an overview and current trends

Korir¹

2023

The continued dependence on information technology applications has led to the adoption of electronic channels and software applications to support businesses, online transactions and communications. In this perspective, both functional and non-functional requirements are critical for the provision of necessary needs at the early phases of the software development process. This is specifically important in the requirement phase of the software development process. Software security is increasingly becoming a necessity concern in this environment. Unfortunately, security concepts such as access control requirements are mostly considered after the functional requirement definition stage. In addition, majority of the developers and organizations regard security as an activity that can be incorporated after the development of a system. This leads to flaws and security defects in the access control mechanism. Therefore, software security issues must be given higher priority in the early stages of the development process. The aim of this paper is to offer a survey of the software security techniques, frameworks and models that have been developed to deal with these issues. The results obtained indicate that software vulnerabilities have made it possible for attackers to exploit them to cause havoc in computerized systems and has become one of the most critical risks facing modern corporate networks. Since most of these vulnerabilities involve exploitable weaknesses introduced through badly written code, the cyber security community has tried to come up with techniques to enhance software products.