• home
• current students
• graduate
• events

Presenter: Shamim Akhtar Shihab
Supervisor:

Date: Wed, December 28, 2022
Time: 11:00:00 - 00:00:00
Place: ZOOM - Please see below.

ABSTRACT

Zoom  meeting link: https://uvic.zoom.us/j/89534047297?pwd=dU11eEJvTTIxVnlyWUJyWkZxdi9PQT09 

Meeting ID: 895 3404 7297 

Password: 295376 

One tap mobile 

+17789072071,,89534047297# Canada 

+16475580588,,89534047297# Canada 

Dial by your location 

        +1 778 907 2071 Canada 

        +1 647 558 0588 Canada 

Meeting ID: 895 3404 7297 

Find your local number: https://uvic.zoom.us/u/kCtnzlFsG 

Note: Please log in to Zoom via SSO and your UVic Netlink ID

ABSTRACT: 

Remote healthcare monitoring system is currently gaining a lot of interest due to their potential to save lives by providing patients with continuous monitoring and quick responses when they are in critical medical condition. With the development of the Internet of Things and wireless body area networks, medical personnel can now use the public channel to get real-time data from the sensors implanted in the patient’s body. However, protecting patient confidentiality and privacy of shared data from various threats is a significant challenge due to the openness of wireless communication. This necessitates the implementation of a robust authentication scheme to ensure secure communication between trusted healthcare providers and sensors. To counter these issues, in 2021, Mehedi et al. presented a lightweight anonymous user authentication scheme for securely obtaining patient’s real-time data. Their protocol is considered practical for deployment on sensor nodes as it only utilizes hash functions and does not require any public key cryptography. In this paper, we demonstrate how their protocol loses synchronization when a message is blocked/jammed and how in some scenarios, the protocol is exposed to the risk of session key disclosure. To overcome these threats, we propose a lightweight mutual authentication scheme to provide data security and privacy in healthcare. The proposed system uses a one-way hash chain technique to ensure forward secrecy and a flag parameter mechanism to make it resistant to desynchronization attacks while achieving user and sensor node anonymity. With the demonstration of both formal and informal analysis, the proposed protocol is ensured to withstand the identified attacks in Mehedi et al.’s scheme. The comparative analysis in terms of security and performance with relevant protocols indicates that the proposed protocol ensures higher security with considerably lower computation and communication overheads, making it suitable for practical implementation in a lightweight healthcare environment.