ARTICLE IN PRESS
JID: CAEE [m3Gsc; April 27, 2017;22:0 ]
Computers and Electrical Engineering 0 0 0 (2017) 1–10
Contents lists available at ScienceDirect
Computers and Electrical Engineering
journal homepage: www.elsevier.com/locate/compeleceng
A provably secure password-based anonymous authentication
scheme for wireless body area networks
R
Fushan Wei
a , b , ∗
, P. Vijayakumar
c
, Jian Shen
a
, Ruijie Zhang
b
, Li Li
d
a
School of Computer and Software, Nanjing University of Information Science and Technology, Nanjing, 210044, China
b
State Key Laboratory of Mathematical Engineering and Advanced Computing, Zhengzhou, 450 0 02, China
c
University College of Engineering Tindivanam, A Constituent College of Anna University Chennai, Melpakkam, 604001, India
d
International School of Software, Wuhan University, Wuhan, 430 0 0 0, China
a r t i c l e i n f o
Article history:
Received 29 December 2016
Revised 19 April 2017
Accepted 19 April 2017
Available online xxx
Keywords:
Anonymous
Wireless body area networks
Password authentication
Zero-knowledge proof
Provably security
a b s t r a c t
Wireless body area networks (WBANs) comprise many tiny sensor nodes which are planted
in or around a patient’s body. These sensor nodes can collect biomedical data of the
patient and transmit these valuable data to a data sink or a personal digital assistant.
Later, health care service providers can get access to these data through authorization.
The biomedical data are usually personal and privacy. Consequently, data confidentiality
and user privacy are primary concerns for WBANs. In order to achieve these goals, we
propose an anonymous authentication scheme for WBANs based on low-entropy password
and prove its security in the random oracle model. Our scheme enjoys strong anonymity
in the sense that only the client knows his identity during the authentication phase of
the scheme. Compared with other related proposals, our scheme is efficient in terms of
computation. Moreover, the authentication of the client relies on human-rememberable
password, which makes our scheme more suitable for applications in WBANs.
©2017 Elsevier Ltd. All rights reserved.
1.
Introduction
With the rapid development of wireless communication and information technologies, we are now in the era of cloud
computing [1] , the Internet of things [2] and big data [3] . Nowadays, people no longer need come to hospitals and medical
centers to get medical care services thanks to these advanced technologies. Instead, patients now can enjoy convenient e-
health services almost anytime and anywhere [4,5] . E-health services mainly rely on wireless body area networks (WBANs).
WBAN systems consist many tiny sensors which are planted in or around a human body with wireless communication
ability (such as Wi-Fi, blue-teeth) to transmit collected data of a patient to a sink node. The sink node can be a smart
phone, a personal digital assistant or any portable devices. The sink node stores the collected biomedical data (such as
cardiac, blood pressure, heart beat) of a client. Later, medical care service providers can get access to these biomedical data
to diagnose a patient [6] .
WBANs greatly improve the life quality of patients and provide almost ubiquitous e-health services. However, WBANs
also bring some challenges which should be solved before using this technology in real-life. The first challenge is security.
R
Reviews processed and recommended for publication to the Editor-in-Chief by Guest Editor Dr. M. Karuppiah.
∗
Corresponding author.
E-mail addresses: weifs831020@163.com (F. Wei), vijibond20 0 0@gmail.com (P. Vijayakumar), s_shenjian@126.com (J. Shen), rjz_wonder@163.com (R.
Zhang), lli@whu.edu.cn (L. Li).
http://dx.doi.org/10.1016/j.compeleceng.2017.04.017
0045-7906/© 2017 Elsevier Ltd. All rights reserved.
Please cite this article as: F. Wei et al., A provably secure password-based anonymous authentication scheme for wireless
body area networks, Computers and Electrical Engineering (2017), http://dx.doi.org/10.1016/j.compeleceng.2017.04.017