Secure-by-Design Real-Time Internet of Medical Things Architecture: e-Health Population Monitoring (RTPM)

Telecom Pub Date : 2024-07-10 DOI:10.3390/telecom5030031

Jims Marchang, Jade McDonald, Solan Keishing, Kavyan Zoughalian, Raymond Mawanda, Corentin Delhon-Bugard, Nicolas Bouillet, Ben Sanders

{"title":"Secure-by-Design Real-Time Internet of Medical Things Architecture: e-Health Population Monitoring (RTPM)","authors":"Jims Marchang, Jade McDonald, Solan Keishing, Kavyan Zoughalian, Raymond Mawanda, Corentin Delhon-Bugard, Nicolas Bouillet, Ben Sanders","doi":"10.3390/telecom5030031","DOIUrl":null,"url":null,"abstract":"The healthcare sector has undergone a profound transformation, owing to the influential role played by Internet of Medical Things (IoMT) technology. However, there are substantial concerns over these devices’ security and privacy-preserving mechanisms. The current literature on IoMT tends to focus on specific security features, rather than wholistic security concerning Confidentiality, Integrity, and Availability (CIA Triad), and the solutions are generally simulated and not tested in a real-world network. The proposed innovative solution is known as Secure-by-Design Real-Time IoMT Architecture for e-Health Population Monitoring (RTPM) and it can manage keys at both ends (IoMT device and IoMT server) to maintain high privacy standards and trust during the monitoring process and enable the IoMT devices to run safely and independently even if the server is compromised. However, the session keys are controlled by the trusted IoMT server to lighten the IoMT devices’ overheads, and the session keys are securely exchanged between the client system and the monitoring server. The proposed RTPM focuses on addressing the major security requirements for an IoMT system, i.e., the CIA Triad, and conducts device authentication, protects from Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks, and prevents non-repudiation attacks in real time. A self-healing solution during the network failure of live e-health monitoring is also incorporated in RTPM. The robustness and stress of the system are tested with different data types and by capturing live network traffic. The system’s performance is analysed using different security algorithms with different key sizes of RSA (1024 to 8192 bits), AES (128 to 256 bits), and SHA (256 bits) to support a resource-constraint-powered system when integrating with resource-demanding secure parameters and features. In the future, other security features like intrusion detection and prevention and the user’s experience and trust level of such a system will be tested.","PeriodicalId":509646,"journal":{"name":"Telecom","volume":"16 3","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-07-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Telecom","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.3390/telecom5030031","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

The healthcare sector has undergone a profound transformation, owing to the influential role played by Internet of Medical Things (IoMT) technology. However, there are substantial concerns over these devices’ security and privacy-preserving mechanisms. The current literature on IoMT tends to focus on specific security features, rather than wholistic security concerning Confidentiality, Integrity, and Availability (CIA Triad), and the solutions are generally simulated and not tested in a real-world network. The proposed innovative solution is known as Secure-by-Design Real-Time IoMT Architecture for e-Health Population Monitoring (RTPM) and it can manage keys at both ends (IoMT device and IoMT server) to maintain high privacy standards and trust during the monitoring process and enable the IoMT devices to run safely and independently even if the server is compromised. However, the session keys are controlled by the trusted IoMT server to lighten the IoMT devices’ overheads, and the session keys are securely exchanged between the client system and the monitoring server. The proposed RTPM focuses on addressing the major security requirements for an IoMT system, i.e., the CIA Triad, and conducts device authentication, protects from Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks, and prevents non-repudiation attacks in real time. A self-healing solution during the network failure of live e-health monitoring is also incorporated in RTPM. The robustness and stress of the system are tested with different data types and by capturing live network traffic. The system’s performance is analysed using different security algorithms with different key sizes of RSA (1024 to 8192 bits), AES (128 to 256 bits), and SHA (256 bits) to support a resource-constraint-powered system when integrating with resource-demanding secure parameters and features. In the future, other security features like intrusion detection and prevention and the user’s experience and trust level of such a system will be tested.

查看原文本刊更多论文

安全设计的实时医疗物联网架构：电子健康人口监测 (RTPM)

由于医疗物联网（IoMT）技术发挥了重要作用，医疗保健行业经历了一场深刻的变革。然而，人们对这些设备的安全性和隐私保护机制非常担忧。目前有关 IoMT 的文献往往侧重于特定的安全功能，而不是有关保密性、完整性和可用性（CIA 三性）的整体安全，而且这些解决方案一般都是模拟的，没有在真实世界的网络中进行测试。所提出的创新解决方案被称为 "用于电子健康人口监测的安全设计实时 IoMT 架构（RTPM）"，它可以管理两端（IoMT 设备和 IoMT 服务器）的密钥，从而在监测过程中保持较高的隐私标准和信任度，即使服务器受到威胁，IoMT 设备也能安全、独立地运行。不过，会话密钥由可信的 IoMT 服务器控制，以减轻 IoMT 设备的开销，会话密钥在客户端系统和监控服务器之间安全交换。所提出的 RTPM 重点解决了 IoMT 系统的主要安全要求，即 CIA Triad，并能实时进行设备验证、防止拒绝服务（DoS）和分布式拒绝服务（DDoS）攻击，以及防止不可抵赖攻击。RTPM 中还包含实时电子健康监测网络故障时的自愈解决方案。通过不同的数据类型和捕获实时网络流量，对系统的稳健性和压力进行了测试。使用不同密钥大小的 RSA（1024 至 8192 位）、AES（128 至 256 位）和 SHA（256 位）等不同安全算法对系统性能进行了分析，以便在集成对资源要求较高的安全参数和功能时支持资源受限的系统。今后，还将测试入侵检测和防御等其他安全功能，以及用户对此类系统的体验和信任度。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Telecom

自引率

0.00%

发文量