RAMHU: a new robust lightweight scheme for mutual users authentication in healthcare applications

Al-Zubaidie, Mishall and Zhang, Zhongwei and Zhang, Ji (2019) RAMHU: a new robust lightweight scheme for mutual users authentication in healthcare applications. Security and Communication Networks, 2019 (Article 3263902). pp. 1-26. ISSN 1939-0114

[img] Text (Published Version)
RAMHU Paper.pdf
Available under License Creative Commons Attribution 4.0.

Download (5Mb)

Abstract

Providing a mechanism to authenticate users in healthcare applications is an essential security requirement to prevent both external and internal attackers from penetrating patients’ identities and revealing their health data. Many schemes have been developed to provide authentication mechanisms to ensure that only legitimate users are authorised to connect, but these schemes still suffer from vulnerable security. Various attacks expose patients’ data for malicious tampering or destruction. Transferring health-related data and information between users and the health centre makes them exposed to penetration by adversaries as they may move through an insecure channel. In addition, previous mechanisms have suffered from the poor protection of users’ authentication information. To ensure the protection of patients’ information and data, we propose a scheme that authenticates users based on the information of both the device and the legitimate user. In this paper, we propose a Robust Authentication Model for Healthcare Users (RAMHU) that provides mutual authentication between the server and clients. This model utilizes an Elliptic Curve Integrated Encryption Scheme (ECIES) and PHOTON to achieve strong security and good overall performance. RAMHU relies on multiple-pseudonym, physical address, and one-time password mechanisms to authenticate legitimate users. Moreover, extensive informal and formal security analysis with the automated validation of Internet security protocols and applications (AVISPA) tool demonstrate that our model offers a high level of security in repelling a wide variety of possible attacks.


Statistics for USQ ePrint 36210
Statistics for this ePrint Item
Item Type: Article (Commonwealth Reporting Category C)
Refereed: Yes
Item Status: Live Archive
Additional Information: Copyright © 2019 Mishall Al-Zubaidie et al. This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
Faculty/School / Institute/Centre: Current - Faculty of Health, Engineering and Sciences - School of Agricultural, Computational and Environmental Sciences
Date Deposited: 23 Apr 2019 05:12
Last Modified: 24 Jun 2019 06:05
Fields of Research : 08 Information and Computing Sciences > 0805 Distributed Computing > 080503 Networking and Communications
11 Medical and Health Sciences > 1117 Public Health and Health Services > 111799 Public Health and Health Services not elsewhere classified
08 Information and Computing Sciences > 0804 Data Format > 080402 Data Encryption
08 Information and Computing Sciences > 0806 Information Systems > 080609 Information Systems Management
Identification Number or DOI: 10.1155/2019/3263902
URI: http://eprints.usq.edu.au/id/eprint/36210

Actions (login required)

View Item Archive Repository Staff Only