A New PUF-Based Protocol for Mutual Authentication and Key Agreement Between Three Layers of Entities in Cloud-Based IoMT Networks

Amir Masoud Aminian Modarres; Nima S. Anzabi-Nezhad; Maryam Zare

doi:10.1109/ACCESS.2024.3361921

IEEE Access (Jan 2024)

A New PUF-Based Protocol for Mutual Authentication and Key Agreement Between Three Layers of Entities in Cloud-Based IoMT Networks

Amir Masoud Aminian Modarres,
Nima S. Anzabi-Nezhad,
Maryam Zare

Affiliations

Amir Masoud Aminian Modarres: ORCiD; Department of Electrical Engineering, Sadjad University, Mashhad, Iran
Nima S. Anzabi-Nezhad: ORCiD; Department of Electrical Engineering, Faculty of Electrical and Computer Engineering, Quchan University of Technology, Quchan, Iran
Maryam Zare: ORCiD; Department of Electrical Engineering, Faculty of Electrical and Computer Engineering, Quchan University of Technology, Quchan, Iran

DOI: https://doi.org/10.1109/ACCESS.2024.3361921
Journal volume & issue: Vol. 12
pp. 21807 – 21824

Abstract

Read online

The Internet of Medical Things (IoMT) is a promising framework for expanding and improving telemedicine services. A common cloud-based IoMT architecture consists of three layers of entities, the first layer (such as smart sensors and devices), the second layer (such as gateways), and the third layer (such as cloud servers). Obviously, in these networks, the protection of sensitive information against security threats as well as authentication between the entities is a key issue. On the other hand, the devices involved in the first and second layers usually suffer from poor computational capabilities as well as a lack of physical protection, which should be considered in the design of security protocols. Recently, Alladi et al. have proposed a lightweight authentication protocol for the cloud-based IoMT that addresses these challenges, using Physically Unclonable Function (PUF). In this paper, we first provide thorough cryptanalysis of their scheme and clarify its important vulnerabilities that lead to protocol collapse. Then, we propose a new lightweight protocol based on PUF to perform strong mutual authentication and key agreement between parties in the IoMT networks. The formal (using BAN logic) and informal security analysis demonstrate that our scheme is resistant to several well-known attacks, including physical attacks. Also, our evaluation of computational cost and security features clearly shows that the proposed scheme outperforms similar schemes in security and efficiency. Another important advantage of our protocol is that it performs the mutual authentication and key agreement process separately for each pair of layers in the three-layer cloud-based IoMT architecture. This triple authentication scheme provides the necessary flexibility for use in different scenarios and working conditions. In this aspect, as far as we know, our proposed protocol is the first of its kind.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords