• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

一种用于电子医疗保健系统的云辅助密钥协商协议。

A cloud-assisted key agreement protocol for the E-healthcare system.

作者信息

Keshta Ismail

机构信息

Department of Computer Science and Information Systems, College of Applied Sciences, AlMaarefa University, Riyadh, Saudi Arabia.

出版信息

PLoS One. 2025 Jun 3;20(6):e0322313. doi: 10.1371/journal.pone.0322313. eCollection 2025.

DOI:10.1371/journal.pone.0322313
PMID:40460113
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC12133001/
Abstract

Secure data transmission is critical to cloud-based electronic healthcare (e-healthcare) systems. Upon delving into the literature, it becomes clear that several security mechanisms have been developed to ensure the security of exchanged information across patients, physicians, and the cloud server, but they do not resist vulnerabilities such as man-in-the-middle, side-channel, and session key hijacking attacks. These vulnerabilities can seriously compromise the integrity of exchanged medical records. In light of this, the article proposes a cloud-assisted key agreement protocol for the e-healthcare system to enable secure authentication for patient monitoring, enhancing mutual authentication of the participating entities and creating protected session keys for secure open-channel communication. The proposed methodology employs robust and lightweight procedures, including SHA-256 and Elliptic Curve Cryptography (ECC), while considering the challenges of implementing strong security protocols in healthcare systems, such as the need for high performance and low energy consumption. The proof of correctness and robustness of the proposed protocol has been analyzed through the Real-Or-Random (RoR) model, ProVerif verification toolkit, and pragmatic illustration, while the efficiency and efficacy were checked by measuring computation, communication, storage costs, and energy consumption. The result obtained from the security analysis demonstrated that the proposed protocol resisting man-in-the-middle, replay, DoS, traceability/tracking, desynchronization, impersonation, and side channel attacks offers key secrecy, confidentiality, integrity, and authorization. In contrast, the result depicted from the performance analysis section shows that the proposed protocol is 46.99% better in communication, 96.46% in computation, and 53.69% in energy consumption, which is inaugurating its superiority over its competitors. Hence, it is recommended for practical implementation in the real-world cloud-based e-healthcare scenario.

摘要

安全的数据传输对于基于云的电子医疗保健(电子医疗)系统至关重要。深入研究文献后可以清楚地发现,已经开发了几种安全机制来确保患者、医生和云服务器之间交换信息的安全性,但它们无法抵御中间人攻击、侧信道攻击和会话密钥劫持攻击等漏洞。这些漏洞可能会严重损害交换的医疗记录的完整性。鉴于此,本文提出了一种用于电子医疗系统的云辅助密钥协商协议,以实现患者监测的安全认证,增强参与实体的相互认证,并创建用于安全开放信道通信的受保护会话密钥。所提出的方法采用了强大且轻量级的程序,包括SHA-256和椭圆曲线密码学(ECC),同时考虑了在医疗系统中实施强大安全协议所面临的挑战,例如对高性能和低能耗的需求。通过真或随机(RoR)模型、ProVerif验证工具包和实际示例分析了所提出协议的正确性和鲁棒性证明,同时通过测量计算、通信、存储成本和能耗来检查效率和效能。从安全分析中获得的结果表明,所提出的协议能够抵御中间人攻击、重放攻击、拒绝服务攻击、可追溯性/跟踪攻击、去同步攻击、伪装攻击和侧信道攻击,提供密钥保密性、机密性、完整性和授权。相比之下,性能分析部分所描绘的结果表明,所提出的协议在通信方面比其他协议好46.99%,在计算方面好96.46%,在能耗方面好53.69%,这表明它比竞争对手具有优势。因此,建议在实际的基于云的电子医疗场景中进行实际实施。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/f4f7e3d55517/pone.0322313.g010.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/53e06bc5fa5c/pone.0322313.g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/b8c234e720c3/pone.0322313.g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/4f5e0652e743/pone.0322313.g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/5b06a21e2edd/pone.0322313.g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/3c4c45abe174/pone.0322313.g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/e402cd6605f9/pone.0322313.g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/e00b11e12fd6/pone.0322313.g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/4b09fd8cada2/pone.0322313.g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/ee3a935874c4/pone.0322313.g009.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/f4f7e3d55517/pone.0322313.g010.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/53e06bc5fa5c/pone.0322313.g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/b8c234e720c3/pone.0322313.g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/4f5e0652e743/pone.0322313.g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/5b06a21e2edd/pone.0322313.g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/3c4c45abe174/pone.0322313.g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/e402cd6605f9/pone.0322313.g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/e00b11e12fd6/pone.0322313.g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/4b09fd8cada2/pone.0322313.g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/ee3a935874c4/pone.0322313.g009.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/e67b/12133001/f4f7e3d55517/pone.0322313.g010.jpg

相似文献

1
A cloud-assisted key agreement protocol for the E-healthcare system.一种用于电子医疗保健系统的云辅助密钥协商协议。
PLoS One. 2025 Jun 3;20(6):e0322313. doi: 10.1371/journal.pone.0322313. eCollection 2025.
2
A lightweight and robust authentication scheme for the healthcare system using public cloud server.利用公共云服务器的轻量级和健壮的医疗保健系统认证方案。
PLoS One. 2024 Jan 30;19(1):e0294429. doi: 10.1371/journal.pone.0294429. eCollection 2024.
3
Security importance of edge-IoT ecosystem: An ECC-based authentication scheme.边缘物联网生态系统的安全重要性:一种基于椭圆曲线密码体制的认证方案。
PLoS One. 2025 Jun 4;20(6):e0322131. doi: 10.1371/journal.pone.0322131. eCollection 2025.
4
Design of Secure Protocol for Cloud-Assisted Electronic Health Record System Using Blockchain.基于区块链的云辅助电子健康记录系统安全协议设计。
Sensors (Basel). 2020 May 21;20(10):2913. doi: 10.3390/s20102913.
5
Cloud-assisted mutual authentication and privacy preservation protocol for telecare medical information systems.云辅助的远程医疗信息系统中的相互认证和隐私保护协议。
Comput Methods Programs Biomed. 2018 Apr;157:191-203. doi: 10.1016/j.cmpb.2018.02.002.
6
An Efficient Mutual Authentication Framework for Healthcare System in Cloud Computing.云计算中医疗保健系统的高效相互认证框架。
J Med Syst. 2018 Jun 28;42(8):142. doi: 10.1007/s10916-018-0987-5.
7
A lightweight and secure protocol for teleworking environment.一种适用于远程办公环境的轻量级安全协议。
PLoS One. 2024 Mar 21;19(3):e0298276. doi: 10.1371/journal.pone.0298276. eCollection 2024.
8
PIA-A secure and efficient identity authentication scheme in telemedicine via the PUF method.PIA——一种通过PUF方法实现的远程医疗中安全高效的身份认证方案。
Sci Rep. 2025 Feb 26;15(1):6846. doi: 10.1038/s41598-025-89502-2.
9
Integrating meta-heuristic with named data networking for secure edge computing in IoT enabled healthcare monitoring system.将元启发式与命名数据网络集成到物联网支持的医疗保健监测系统中的安全边缘计算中。
Sci Rep. 2024 Sep 15;14(1):21532. doi: 10.1038/s41598-024-71506-z.
10
Provably Secure Three-Factor-Based Mutual Authentication Scheme with PUF for Wireless Medical Sensor Networks.基于 PUF 的无线医疗传感器网络三因素互认证协议的可证明安全性
Sensors (Basel). 2021 Sep 9;21(18):6039. doi: 10.3390/s21186039.

本文引用的文献

1
A lightweight and robust authentication scheme for the healthcare system using public cloud server.利用公共云服务器的轻量级和健壮的医疗保健系统认证方案。
PLoS One. 2024 Jan 30;19(1):e0294429. doi: 10.1371/journal.pone.0294429. eCollection 2024.
2
Secure Patient Authentication Framework in the Healthcare System Using Wireless Medical Sensor Networks.基于无线医疗传感器网络的医疗系统中安全的患者认证框架。
J Healthc Eng. 2021 Jul 22;2021:9954089. doi: 10.1155/2021/9954089. eCollection 2021.
3
A robust and lightweight secure access scheme for cloud based E-healthcare services.
一种用于基于云的电子医疗保健服务的健壮且轻量级的安全访问方案。
Peer Peer Netw Appl. 2021;14(5):3043-3057. doi: 10.1007/s12083-021-01162-x. Epub 2021 May 3.
4
Mutual Authentication Protocol for D2D Communications in a Cloud-Based E-Health System.基于云的电子医疗系统中的 D2D 通信的相互认证协议。
Sensors (Basel). 2020 Apr 7;20(7):2072. doi: 10.3390/s20072072.
5
A secure heterogeneous mobile authentication and key agreement scheme for e-healthcare cloud systems.面向电子医疗云系统的安全异构移动认证和密钥协商方案。
PLoS One. 2018 Dec 12;13(12):e0208397. doi: 10.1371/journal.pone.0208397. eCollection 2018.
6
Cloud-assisted mutual authentication and privacy preservation protocol for telecare medical information systems.云辅助的远程医疗信息系统中的相互认证和隐私保护协议。
Comput Methods Programs Biomed. 2018 Apr;157:191-203. doi: 10.1016/j.cmpb.2018.02.002.
7
A Standard Mutual Authentication Protocol for Cloud Computing Based Health Care System.一种用于基于云计算的医疗保健系统的标准相互认证协议。
J Med Syst. 2017 Apr;41(4):50. doi: 10.1007/s10916-017-0699-2. Epub 2017 Feb 17.
8
A Smartphone App and Cloud-Based Consultation System for Burn Injury Emergency Care.一款用于烧伤急救护理的智能手机应用程序和基于云的会诊系统。
PLoS One. 2016 Feb 26;11(2):e0147253. doi: 10.1371/journal.pone.0147253. eCollection 2016.
9
Improvement of a Privacy Authentication Scheme Based on Cloud for Medical Environment.基于云的医疗环境隐私认证方案的改进。
J Med Syst. 2016 Apr;40(4):101. doi: 10.1007/s10916-016-0453-1. Epub 2016 Feb 13.