Center for Cyber Security, School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, Sichuan, 611731, People's Republic of China.
School of Computer Science and Technology, Southwest University for Nationalities, Chengdu, Sichuan, 610041, People's Republic of China.
J Med Syst. 2018 Jun 29;42(8):143. doi: 10.1007/s10916-018-0990-x.
Wireless body area networks (WBANs) comprises a number of sensor nodes and the portable mobile device such as smartphone. It is used to monitor the physical condition and provide a reliable healthcare system. Utilizing the wireless communication network, sensor nodes collect the physiological data of one patient to the portable mobile device and the latter analyzes and transmits them to the application providers. Therefore, the personal data confidentiality and user privacy are cores of WBANs. Recently, Shen et al. presented a multi-layer authentication protocol for WBANs, which is lightweight and much easier to implement. However, we observe that their authentication between sensor nodes and the portable mobile device could ensure the forward security property only when the sensor nodes are changed (add or delete). When the sensor nodes are constant, the security property is not satisfied. Meanwhile, the authentication between the portable mobile device and application provider is prone to mutual impersonation attack, so the critical goal of mutual authentication can not be achieved. In this paper, an improved two-layer authentication scheme is proposed to remove the flaws. The analysis shows that our method is more secure and could withstand various attacks.
无线体域网 (WBAN) 由多个传感器节点和智能手机等便携式移动设备组成。它用于监测身体状况并提供可靠的医疗保健系统。利用无线通信网络,传感器节点将一个患者的生理数据收集到便携式移动设备上,后者对其进行分析并将其传输到应用程序提供商。因此,个人数据保密性和用户隐私是 WBAN 的核心。最近,Shen 等人提出了一种用于 WBAN 的多层认证协议,该协议轻量级且易于实现。然而,我们观察到,他们在传感器节点和便携式移动设备之间的认证仅在传感器节点发生变化(添加或删除)时才能确保前向安全性。当传感器节点保持不变时,安全性就得不到满足。同时,便携式移动设备和应用程序提供商之间的认证容易受到相互冒充攻击,因此无法实现关键的相互认证目标。本文提出了一种改进的两层认证方案来消除这些缺陷。分析表明,我们的方法更安全,可以抵御各种攻击。
