Efficient and Anonymous Authentication for Healthcare Service with Cloud based WBANs
ABSTARCT :
As a promising technology in the development of human healthcare services, the wireless body area networks (WBANs) technology has attracted widespread attention in recent years from both industry and academia. However, due to the sensitiveness of the medical system and the capability limitation of the wearable devices, security, privacy, and efficiency of the healthcare services in WBANs are remained as major challenges. Although different authentication mechanisms have been designed to meet the challenges in recent years, most of them suffer from some functional defects or security problems. In this paper, we firstly provide a review and cryptanalysis on the state-of-theart authentication scheme. In order to meet the challenges and address the drawbacks in previous works, we then propose a new efficient and anonymous authentication scheme for cloud based WBANs. Through the security analysis, we show that our scheme could overcome the weaknesses in previous schemes and meet all the security requirements. Besides, we show the advantages of the proposed scheme through performance evaluation in terms of functionality features, computation overhead, communication overhead and storage overhead, which shows our scheme is more appropriate for practical applications on healthcare services.
EXISTING SYSTEM :
? Most of the existing privacy preserving health care applications provides anonymity from the adversaries.
? Same as all existing authentication schemes, our proposed system is vulnerable to DoS attacks due to the requirement for unlinkability.
? If requests could be linked, the detection of a DoS attack would be trivial and the future connection attempts from that user could be ignored.
? In order to identify an attacker and add them to a revocation list in a scheme providing unlinkability, anonymity must be stripped away from one or more users without being certain that their connection was part of the attack (since they could be legitimately using the service while the attack is taking place).
DISADVANTAGE :
? The identity based authentication systems suffer from the key escrow problem.
? This scheme had major drawback that it was impractical due to heavy computational overhead when directly applied to the distributed healthcare systems.
? The Certificateless Signature (CLS) scheme is almost used to uniquely meet the security preserving demands in WBAN bycertificateless encryption alsodesigned to eliminate the drawbacks of the PKI based scheme and it does not require identity based encryption and digital certificate, i.e., no key escrow problem.
? The scheme also gave big drawback of revocation procedure detailing improperly.
PROPOSED SYSTEM :
• In this paper, we have proposed a system which provides complete privacy and anonymity to the users of health care applications from adversaries and the authentication server.
• In our proposed authentication scheme, we have utilized rotating group signature scheme based on Elliptic curve cryptography to provide anonymity to the patients.
• The proposed scheme can be generalized and applied to other cloud based applications.
• Therefore, the proposed scheme is most suitable for scenarios where the specific user cannot be identified by operations over the data.
• To minimize the computational requirements, various anonymous authentication schemes based on elliptic curve cryptosystem (ECC) have been proposed, which have better performance because of the smaller key size used in ECC.
ADVANTAGE :
? The theoretical analysis evaluated schemes’ performance, demonstrating that the scheme provides various security features as well as resistance to several attacks.
? While other existing schemes lagging in every other phase to give better performance. Hence our scheme is the best technique among others.
? However, those are not efficient to protect users’ private/sensitive data over cloud servrs.
? The SAGE has been demonstrated efficient in terms of transmission delay.
? This paper propose proposed an efficient authenticated key agreement scheme for WBANs plus to add the key update phase in enhancing the security of the scheme.
? The scheme was more efficient based on bilinear pairings but the revocation process was not clearly defined in case of dispute.
|