ERASMIS: An ECC-based robust authentication protocol suitable for medical IoT systems

IF 4.4 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Computer Networks Pub Date : 2025-02-01 DOI:10.1016/j.comnet.2024.110938

Mohammad Reza Servati , Masoumeh Safkhani , Amir Masoud Rahmani , Mehdi Hosseinzadeh

{"title":"ERASMIS: An ECC-based robust authentication protocol suitable for medical IoT systems","authors":"Mohammad Reza Servati , Masoumeh Safkhani , Amir Masoud Rahmani , Mehdi Hosseinzadeh","doi":"10.1016/j.comnet.2024.110938","DOIUrl":null,"url":null,"abstract":"<div><div>The “Internet of Things” (IoT) refers to the interconnection of physical devices that transmit and receive data over a network infrastructure. Wireless Sensor Networks (WSNs) are a key component of this infrastructure, facilitating data exchange through wireless channels. They are widely used in healthcare, transportation, smart home monitoring, and other applications. As IoT networks continue to evolve rapidly, security and privacy have become critical concerns. Security is essential within these systems, and privacy is especially important, as data transmitted over wireless channels can be intercepted, tracked, or tampered with.</div><div>In recent years, many authentication protocols have been proposed by researchers and experts. However, some of these protocols lack essential security features and fail to provide robust protection against various active and passive attacks. In this paper, we introduce ERASMIS, an authentication protocol based on elliptic curve cryptography (ECC) designed specifically for healthcare IoT systems. We explain how ERASMIS ensures security and present both informal and formal proofs of its security. Our formal security analyses, conducted with Real or Random (RoR) model and also tools such as Scyther and ProVerif demonstrate that the proposed protocol is resilient against numerous attacks while being more efficient than comparable schemes, with low computational and communication overhead. Furthermore, we have developed a Python implementation of the proposed protocol to evaluate its performance in real-world scenarios.</div></div>","PeriodicalId":50637,"journal":{"name":"Computer Networks","volume":"258 ","pages":"Article 110938"},"PeriodicalIF":4.4000,"publicationDate":"2025-02-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computer Networks","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1389128624007709","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

Abstract

The “Internet of Things” (IoT) refers to the interconnection of physical devices that transmit and receive data over a network infrastructure. Wireless Sensor Networks (WSNs) are a key component of this infrastructure, facilitating data exchange through wireless channels. They are widely used in healthcare, transportation, smart home monitoring, and other applications. As IoT networks continue to evolve rapidly, security and privacy have become critical concerns. Security is essential within these systems, and privacy is especially important, as data transmitted over wireless channels can be intercepted, tracked, or tampered with.

In recent years, many authentication protocols have been proposed by researchers and experts. However, some of these protocols lack essential security features and fail to provide robust protection against various active and passive attacks. In this paper, we introduce ERASMIS, an authentication protocol based on elliptic curve cryptography (ECC) designed specifically for healthcare IoT systems. We explain how ERASMIS ensures security and present both informal and formal proofs of its security. Our formal security analyses, conducted with Real or Random (RoR) model and also tools such as Scyther and ProVerif demonstrate that the proposed protocol is resilient against numerous attacks while being more efficient than comparable schemes, with low computational and communication overhead. Furthermore, we have developed a Python implementation of the proposed protocol to evaluate its performance in real-world scenarios.

查看原文本刊更多论文

求助全文

约1分钟内获得全文求助全文

来源期刊

Computer Networks 工程技术-电信学

CiteScore

10.80

自引率

3.60%

发文量

434

审稿时长

8.6 months

期刊介绍： Computer Networks is an international, archival journal providing a publication vehicle for complete coverage of all topics of interest to those involved in the computer communications networking area. The audience includes researchers, managers and operators of networks as well as designers and implementors. The Editorial Board will consider any material for publication that is of interest to those groups.