Ryu Jihyeon, Kang Dongwoo, Lee Hakjun, Kim Hyoungshick, Won Dongho
Department of Software, Sungkyunkwan University, 2066 Seobu-ro, Jangan-gu, Suwon-si 16419, Gyeonggi-do, Korea.
Department of Electrical and Computer Engineering, Sungkyunkwan University, 2066 Seobu-ro, Jangan-gu, Suwon-si 16419, Gyeonggi-do, Korea.
Sensors (Basel). 2020 Dec 12;20(24):7136. doi: 10.3390/s20247136.
Internet of Things (IoT) technology has recently been integrated with various healthcare devices to monitor patients' health status and share it with their healthcare practitioners. Since healthcare data often contain personal and sensitive information, healthcare systems must provide a secure user authentication scheme. Recently, Adavoudi-Jolfaei et al. and Sharma and Kalra proposed a lightweight protocol using hash function encryption only for user authentication on wireless sensor systems. In this paper, we found some weaknesses in target schemes. We propose a novel three-factor lightweight user authentication scheme that addresses these weaknesses and verifies the security of the proposed scheme using a formal verification tool called ProVerif. In addition, our proposed scheme outperforms other proposed symmetric encryption-based schemes or elliptic curve-based schemes.
物联网(IoT)技术最近已与各种医疗设备集成,以监测患者的健康状况并与他们的医疗从业者共享。由于医疗数据通常包含个人和敏感信息,医疗系统必须提供一种安全的用户认证方案。最近,阿达武迪 - 乔尔法埃等人以及夏尔马和卡尔拉提出了一种仅使用哈希函数加密的轻量级协议,用于无线传感器系统上的用户认证。在本文中,我们发现了目标方案中的一些弱点。我们提出了一种新颖的三因素轻量级用户认证方案,该方案解决了这些弱点,并使用一种名为ProVerif的形式验证工具来验证所提出方案的安全性。此外,我们提出的方案优于其他提出的基于对称加密的方案或基于椭圆曲线的方案。
