An Efficient and Practical Smart Card Based Anonymity Preserving User Authentication Scheme for TMIS using Elliptic Curve Cryptography
- 3 October 2015
- journal article
- research article
- Published by Springer Science and Business Media LLC in Journal of Medical Systems
- Vol. 39 (11), 180
- https://doi.org/10.1007/s10916-015-0351-y
Abstract
In the last few years, numerous remote user authentication and session key agreement schemes have been put forwarded for Telecare Medical Information System, where the patient and medical server exchange medical information using Internet. We have found that most of the schemes are not usable for practical applications due to known security weaknesses. It is also worth to note that unrestricted number of patients login to the single medical server across the globe. Therefore, the computation and maintenance overhead would be high and the server may fail to provide services. In this article, we have designed a medical system architecture and a standard mutual authentication scheme for single medical server, where the patient can securely exchange medical data with the doctor(s) via trusted central medical server over any insecure network. We then explored the security of the scheme with its resilience to attacks. Moreover, we formally validated the proposed scheme through the simulation using Automated Validation of Internet Security Schemes and Applications software whose outcomes confirm that the scheme is protected against active and passive attacks. The performance comparison demonstrated that the proposed scheme has lower communication cost than the existing schemes in literature. In addition, the computation cost of the proposed scheme is nearly equal to the exiting schemes. The proposed scheme not only efficient in terms of different security attacks, but it also provides an efficient login, mutual authentication, session key agreement and verification and password update phases along with password recovery.Keywords
Funding Information
- King Saud University (PRG-1436-16)
- BITS Pilani (OPERA)
This publication has 52 references indexed in Scilit:
- A novel smart card and dynamic ID based remote user authentication scheme for multi-server environmentsMathematical and Computer Modelling, 2013
- An enhanced smart card based remote user password authentication schemeJournal of Network and Computer Applications, 2013
- Robust Anonymous Authentication Scheme for Telecare Medical Information SystemsJournal of Medical Systems, 2013
- An Efficient and Secure Dynamic ID-based Authentication Scheme for Telecare Medical Information SystemsJournal of Medical Systems, 2012
- An Improved Authentication Scheme for Telecare Medicine Information SystemsJournal of Medical Systems, 2012
- An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cardsJournal of Network and Computer Applications, 2011
- A More Secure Authentication Scheme for Telecare Medicine Information SystemsJournal of Medical Systems, 2011
- Cryptanalysis and improvement of a biometrics-based remote user authentication scheme using smart cardsJournal of Network and Computer Applications, 2011
- Examining smart-card security under the threat of power analysis attacksInternational Conference on Acoustics, Speech, and Signal Processing (ICASSP), 2002
- On the security of public key protocolsIEEE Transactions on Information Theory, 1983