Ibrahim Maged Hamada, Kumari Saru, Das Ashok Kumar, Wazid Mohammad, Odelu Vanga
Department of Electronics, Communication and Computers, Faculty of Engineering, Helwan University, 1, Sherif St., Helwan, P.O.11792, Cairo, Egypt.
Department of Mathematics, Ch. Charan Singh University, Meerut, Uttar Pradesh 250 005, India.
Comput Methods Programs Biomed. 2016 Oct;135:37-50. doi: 10.1016/j.cmpb.2016.07.022. Epub 2016 Jul 15.
Mutual authentication is a very important service that must be established between sensor nodes in wireless body area network (WBAN) to ensure the originality and integrity of the patient's data sent by sensors distributed on different parts of the body. However, mutual authentication service is not enough. An adversary can benefit from monitoring the traffic and knowing which sensor is in transmission of patient's data. Observing the traffic (even without disclosing the context) and knowing its origin, it can reveal to the adversary information about the patient's medical conditions. Therefore, anonymity of the communicating sensors is an important service as well. Few works have been conducted in the area of mutual authentication among sensor nodes in WBAN. However, none of them has considered anonymity among body sensor nodes. Up to our knowledge, our protocol is the first attempt to consider this service in a two-tier WBAN. We propose a new secure protocol to realize anonymous mutual authentication and confidential transmission for star two-tier WBAN topology.
The proposed protocol uses simple cryptographic primitives. We prove the security of the proposed protocol using the widely-accepted Burrows-Abadi-Needham (BAN) logic, and also through rigorous informal security analysis. In addition, to demonstrate the practicality of our protocol, we evaluate it using NS-2 simulator.
BAN logic and informal security analysis prove that our proposed protocol achieves the necessary security requirements and goals of an authentication service. The simulation results show the impact on the various network parameters, such as end-to-end delay and throughput. The nodes in the network require to store few hundred bits. Nodes require to perform very few hash invocations, which are computationally very efficient. The communication cost of the proposed protocol is few hundred bits in one round of communication. Due to the low computation cost, the energy consumed by the nodes is also low.
Our proposed protocol is a lightweight anonymous mutually authentication protocol to mutually authenticate the sensor nodes with the controller node (hub) in a star two-tier WBAN topology. Results show that our protocol proves efficiency over previously proposed protocols and at the same time, achieves the necessary security requirements for a secure anonymous mutual authentication scheme.
相互认证是无线体域网(WBAN)中传感器节点之间必须建立的一项非常重要的服务,以确保分布在身体不同部位的传感器所发送患者数据的原始性和完整性。然而,仅有相互认证服务是不够的。攻击者可以通过监控通信流量并知晓哪个传感器正在传输患者数据而从中获利。观察通信流量(即使不泄露上下文信息)并知道其来源,攻击者就能够向其透露有关患者医疗状况的信息。因此,通信传感器的匿名性也是一项重要的服务。在WBAN中传感器节点间相互认证领域开展的工作较少。然而,它们都没有考虑体传感器节点之间的匿名性。据我们所知,我们的协议是在两层WBAN中首次尝试考虑这项服务。我们提出一种新的安全协议,以实现星型两层WBAN拓扑结构的匿名相互认证和机密传输。
所提出的协议使用简单的密码原语。我们使用广泛认可的布劳尔斯 - 阿巴迪 - 尼达姆(BAN)逻辑以及严格的非正式安全分析来证明所提出协议的安全性。此外,为了证明我们协议的实用性,我们使用NS - 2模拟器对其进行评估。
BAN逻辑和非正式安全分析证明,我们提出的协议实现了认证服务所需的安全要求和目标。仿真结果显示了对各种网络参数的影响,如端到端延迟和吞吐量。网络中的节点只需存储几百位。节点只需执行极少的哈希调用,计算效率非常高。所提出协议在一轮通信中的通信成本为几百位。由于计算成本低,节点消耗的能量也低。
我们提出的协议是一种轻量级匿名相互认证协议,用于在星型两层WBAN拓扑结构中使传感器节点与控制器节点(集线器)进行相互认证。结果表明,我们的协议比先前提出的协议更高效,同时实现了安全匿名相互认证方案所需的安全要求。
