Mutual Authentication in Body Area Networks (BANs) Using Multi-Biometric and Physiological Signal-Based Key Agreement

Journal of IT in Asia Pub Date : 2021-11-30 DOI:10.33736/jita.3847.2021

Nur Adibah Saffa Aziz

{"title":"Mutual Authentication in Body Area Networks (BANs) Using Multi-Biometric and Physiological Signal-Based Key Agreement","authors":"Nur Adibah Saffa Aziz","doi":"10.33736/jita.3847.2021","DOIUrl":null,"url":null,"abstract":"The development of wireless technology has had a major impact on the wireless body area networks (WBANs) especially in the medical field where a small wireless sensor is installed in, on, or around the patient’s body for real-time health monitoring and personalized medical treatment. However, the data is collected by the sensors and transmitted via wireless channels. This could make the channel vulnerable to being accessed and falsified by an unauthorized user and may put the lives of the patient at risk and might give a false alarm. Therefore, a secure authentication and data encryption scheme in BANs is needed in a device to establish the interaction. The asymmetric cryptosystems that function in BANs can cause a Man-in-the-Middle attack because the initial requirement in BAN requires the user to configure a master key or password. The impersonation attack may also involve BAN where other individual pretends to be the owner of the devices and lastly Eavesdropping attack where the attack eavesdrops on transmission to unlock devices. With the existing schemes, mutual authentication using the biometric features (fingerprint) and the physiological signal from the electrocardiogram database is used to make sure the authentication is more secure, reliable, and accurate. In this paper, we proposed a new multifactor authentication scheme on biometric authentication which is the retina scan. We proposed the retina scan because the retina of the human eye is unique, remains the same, and cannot be obtained from anywhere which makes it difficult to forge. We also added a new device which is a smart watch to receive a key agreement message from the fingerprint to double confirm the same identification. This is to make sure high security is obtained and offered simplicity, efficiency, and precision scheme for the authentication.","PeriodicalId":152019,"journal":{"name":"Journal of IT in Asia","volume":"9 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-11-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of IT in Asia","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.33736/jita.3847.2021","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

The development of wireless technology has had a major impact on the wireless body area networks (WBANs) especially in the medical field where a small wireless sensor is installed in, on, or around the patient’s body for real-time health monitoring and personalized medical treatment. However, the data is collected by the sensors and transmitted via wireless channels. This could make the channel vulnerable to being accessed and falsified by an unauthorized user and may put the lives of the patient at risk and might give a false alarm. Therefore, a secure authentication and data encryption scheme in BANs is needed in a device to establish the interaction. The asymmetric cryptosystems that function in BANs can cause a Man-in-the-Middle attack because the initial requirement in BAN requires the user to configure a master key or password. The impersonation attack may also involve BAN where other individual pretends to be the owner of the devices and lastly Eavesdropping attack where the attack eavesdrops on transmission to unlock devices. With the existing schemes, mutual authentication using the biometric features (fingerprint) and the physiological signal from the electrocardiogram database is used to make sure the authentication is more secure, reliable, and accurate. In this paper, we proposed a new multifactor authentication scheme on biometric authentication which is the retina scan. We proposed the retina scan because the retina of the human eye is unique, remains the same, and cannot be obtained from anywhere which makes it difficult to forge. We also added a new device which is a smart watch to receive a key agreement message from the fingerprint to double confirm the same identification. This is to make sure high security is obtained and offered simplicity, efficiency, and precision scheme for the authentication.

查看原文本刊更多论文

基于多生物特征和生理信号密钥协议的身体区域网络相互认证

无线技术的发展对无线体域网络(wban)产生了重大影响，特别是在医疗领域，在患者体内、身上或周围安装小型无线传感器，以实现实时健康监测和个性化医疗。然而，数据是由传感器收集并通过无线通道传输的。这可能使通道容易被未经授权的用户访问和伪造，并可能使患者的生命处于危险之中，并可能发出错误警报。因此，需要一种安全的身份验证和数据加密方案来建立设备间的交互。在BAN中工作的非对称密码系统可能导致中间人攻击，因为BAN中的初始要求要求用户配置主密钥或密码。模拟攻击还可能涉及BAN，其中其他人假装是设备的所有者，最后是窃听攻击，其中攻击窃听传输以解锁设备。在现有的方案中，利用生物特征(指纹)和心电图数据库中的生理信号相互认证，使认证更加安全、可靠和准确。本文提出了一种新的基于视网膜扫描的多因素身份认证方案。我们提出视网膜扫描，因为人眼的视网膜是独一无二的，保持不变，不能从任何地方获得，这使得它很难伪造。我们还增加了一个新设备，这是一个智能手表，可以接收来自指纹的关键协议信息，以双重确认相同的身份。这是为了确保获得较高的安全性，并为身份验证提供简单、高效和精确的方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of IT in Asia

自引率

0.00%

发文量