An Efficient, Hybrid Authentication Using ECG and Lightweight Cryptographic Scheme for WBAN

Zia Ur Rehman; Saud Altaf; Shafiq Ahmad; Shamsul Huda; Adel M. Al-Shayea; Sofia Iqbal

doi:10.1109/ACCESS.2021.3115706

IEEE Access (Jan 2021)

An Efficient, Hybrid Authentication Using ECG and Lightweight Cryptographic Scheme for WBAN

Zia Ur Rehman,
Saud Altaf,
Shafiq Ahmad,
Shamsul Huda,
Adel M. Al-Shayea,
Sofia Iqbal

Affiliations

Zia Ur Rehman: ORCiD; University Institute of Information Technology, Pir Mehr Ali Shah Arid Agriculture University (PMAS–AAR), Rawalpindi, Pakistan
Saud Altaf: University Institute of Information Technology, Pir Mehr Ali Shah Arid Agriculture University (PMAS–AAR), Rawalpindi, Pakistan
Shafiq Ahmad: ORCiD; Industrial Engineering Department, College of Engineering, King Saud University, Riyadh, Saudi Arabia
Shamsul Huda: School of Information Technology, Deakin University, Burwood, VIC, Australia
Adel M. Al-Shayea: ORCiD; Industrial Engineering Department, College of Engineering, King Saud University, Riyadh, Saudi Arabia
Sofia Iqbal: Pakistan Space and Upper Atmosphere Research Commission, Islamabad, Pakistan

DOI: https://doi.org/10.1109/ACCESS.2021.3115706
Journal volume & issue: Vol. 9
pp. 133809 – 133819

Abstract

Read online

The Wireless Body Area Network (WBAN) plays a pivotal role in providing ubiquitous computing and has applications in different fields, especially in health monitoring. The advancement in wearable devices has revolutionized the concept of medical services and brought ease to our daily lives. However, the latent threat imposed by attackers has increased concerns related to the security and privacy of patient’s data due to the open nature of the wireless network. The authentication schemes are used to secure patient’s critical data from different types of cyber-attacks. In this paper, we extend our previous work by presenting an anonymous, hybrid authentication scheme that utilized physiological signals in combination with a lightweight cryptographic method to provide robust security against well-known attacks especially key escrow, base station compromise, and untraceability of sessions. The broadly accepted BAN logic is utilized to offer formal proof of mutual authentication and key agreement. The informal verification is performed by the Automated Validation of Internet Security Protocol and Applications (AVISPA) tool. Furthermore, the comparative analysis of the proposed scheme with peer work highlighted that it accomplished better security at low computational, communicational, energy consumption, and storage overheads.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords