Skip to main content

Tipp

Weitere Artikel dieser Ausgabe durch Wischen aufrufen

Erschienen in: Wireless Personal Communications 1/2021

03.04.2021

On the Security of “Secure and Lightweight Authentication with Key Agreement for Smart Wearable Systems”

verfasst von: Mahdi Nikooghadam, Haleh Amintoosi, Saru Kumari

Erschienen in: Wireless Personal Communications | Ausgabe 1/2021

Einloggen, um Zugang zu erhalten
share
TEILEN

Abstract

The advent of smart and pervasive devices have paved the way for the development of Internet of Things in which, various smart devices collect information about the daily life of people and share it to the scientists and specialists. There are numerous applications in the domain of IoT such as smart healthcare systems in which, wearable devices collect health-related data from the users and transmit it for further processes. However, security challenges are a major concern in the success of smart healthcare applications. Specifically, to protect the security of communications among the wearable sensor devices and the gateways/servers, a secure and lightweight authentication scheme is needed. Recently, Li et al. proposed a lightweight authentication scheme for smart wearable systems (IEEE Internet Things J. 10.1109/JIOT.2020.2984618). Their protocol makes use of fuzzy extractor technique and lightweight operations such as bitwise XOR operations and cryptographic hash function. However, in this comment, we prove that Li et al.’s scheme is prone to the stolen wearable device attack and user impersonation attack. We also discuss the causes and provide some suggestions as the remedy.
Literatur
1.
Zurück zum Zitat Akram, M. A., Mahmood, K., Kumari, S., & Xiong, H. (2020). Comments on “Toward secure and provable authentication for internet of things: realizing industry 4.0”. IEEE Internet of Things Journal, 7(5), 4676-4681. Akram, M. A., Mahmood, K., Kumari, S., & Xiong, H. (2020). Comments on “Toward secure and provable authentication for internet of things: realizing industry 4.0”. IEEE Internet of Things Journal, 7(5), 4676-4681.
2.
Zurück zum Zitat Chen, C. L., Chiang, M. L., Hsieh, H. C., Liu, C. C., & Deng, Y. Y. (2020). A lightweight mutual authentication with wearable device in location-based mobile edge computing. Wireless Personal Communications, 113, 575-598. Chen, C. L., Chiang, M. L., Hsieh, H. C., Liu, C. C., & Deng, Y. Y. (2020). A lightweight mutual authentication with wearable device in location-based mobile edge computing. Wireless Personal Communications, 113, 575-598.
3.
Zurück zum Zitat Gupta, Ankur, Tripathi, Meenakshi, & Sharma, Aakar. (2020). A provably secure and efficient anonymous mutual authentication and key agreement protocol for wearable devices in WBAN. Computer Communications, 160, 311–325. CrossRef Gupta, Ankur, Tripathi, Meenakshi, & Sharma, Aakar. (2020). A provably secure and efficient anonymous mutual authentication and key agreement protocol for wearable devices in WBAN. Computer Communications, 160, 311–325. CrossRef
4.
Zurück zum Zitat Haghi, M., Haghi, M., Neubert, S., Geissler, A., Fleischer, H., Stoll, N., Stoll, R., & Thurow, K. (2020). A flexible and pervasive IoT based healthcare platform for physiological and environmental parameters monitoring. IEEE Internet of Things Journal, 7(6), 5628–5647. CrossRef Haghi, M., Haghi, M., Neubert, S., Geissler, A., Fleischer, H., Stoll, N., Stoll, R., & Thurow, K. (2020). A flexible and pervasive IoT based healthcare platform for physiological and environmental parameters monitoring. IEEE Internet of Things Journal, 7(6), 5628–5647. CrossRef
5.
Zurück zum Zitat Hayek, A., Telawi, S., Börcsök, J., Daou, R. A. Z., & Halabi, N. (2020) Smart wearable system for safety-related medical IoT application: case of epileptic patient working in industrial environment. Health Technol., 10, 363–372. CrossRef Hayek, A., Telawi, S., Börcsök, J., Daou, R. A. Z., & Halabi, N. (2020) Smart wearable system for safety-related medical IoT application: case of epileptic patient working in industrial environment. Health Technol., 10, 363–372. CrossRef
6.
Zurück zum Zitat Li, J., Zhang, N., Ni, J., Chen, J., & Du, R. (2020). Secure and lightweight authentication with key agreement for smart wearable systems. IEEE Internet of Things Journal, 7(8), 7334–7344. CrossRef Li, J., Zhang, N., Ni, J., Chen, J., & Du, R. (2020). Secure and lightweight authentication with key agreement for smart wearable systems. IEEE Internet of Things Journal, 7(8), 7334–7344. CrossRef
7.
Zurück zum Zitat Shamshad, S., Mahmood, K., Kumari, S., & Khan, M. K. (2020). Comments on “Insider attack protection: Lightweight password-based authentication techniques using ECC”. IEEE Systems Journal. Shamshad, S., Mahmood, K., Kumari, S., & Khan, M. K. (2020). Comments on “Insider attack protection: Lightweight password-based authentication techniques using ECC”. IEEE Systems Journal.
8.
Zurück zum Zitat Shamshad, Salman, Khalid Mahmood, and Saru Kumari. ”Comments on amulti-factor user authentication and key agreement protocol based on bilinear pairing for the internet of things.” Wireless Personal Communications, 1(4), 2020. Shamshad, Salman, Khalid Mahmood, and Saru Kumari. ”Comments on amulti-factor user authentication and key agreement protocol based on bilinear pairing for the internet of things.” Wireless Personal Communications, 1(4), 2020.
9.
Zurück zum Zitat Sowjanya, K., Dasgupta, M., & Ray, S. (2020). An elliptic curve cryptography based enhanced anonymous authentication protocol for wearable health monitoring systems. International Journal of Information Security, 19(1), 129-146. Sowjanya, K., Dasgupta, M., & Ray, S. (2020). An elliptic curve cryptography based enhanced anonymous authentication protocol for wearable health monitoring systems. International Journal of Information Security, 19(1), 129-146.
Metadaten
Titel
On the Security of “Secure and Lightweight Authentication with Key Agreement for Smart Wearable Systems”
verfasst von
Mahdi Nikooghadam
Haleh Amintoosi
Saru Kumari
Publikationsdatum
03.04.2021
Verlag
Springer US
Erschienen in
Wireless Personal Communications / Ausgabe 1/2021
Print ISSN: 0929-6212
Elektronische ISSN: 1572-834X
DOI
https://doi.org/10.1007/s11277-021-08430-2

Weitere Artikel der Ausgabe 1/2021

Wireless Personal Communications 1/2021 Zur Ausgabe