IAR-AKA: An Efficient Authentication Scheme for Healthcare Tactile Internet Beyond Conventional Security

IF 4.7 2区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

IEEE Transactions on Network and Service Management Pub Date : 2025-02-17 DOI:10.1109/TNSM.2025.3542796

Xin Yang;Yimin Guo

{"title":"IAR-AKA: An Efficient Authentication Scheme for Healthcare Tactile Internet Beyond Conventional Security","authors":"Xin Yang;Yimin Guo","doi":"10.1109/TNSM.2025.3542796","DOIUrl":null,"url":null,"abstract":"With the rapid advancement of 5G technology, the tactile Internet is emerging as a novel paradigm of interaction, particularly in fields like healthcare, where stringent demands for real-time and precise performance are prevalent. During the transmission and storage of medical data, malicious adversaries may attempt to compromise sensitive patient information or even disrupt the normal operation of medical devices, posing a threat to patient safety. Many existing authentication schemes claim and prove to resist various known attacks. However, subsequent research has uncovered security vulnerabilities in these schemes, primarily due to their oversight of implicit attacks, which stem from different combinations or inferences of known attacks. In this context, the design of a lightweight authentication scheme that is secure against implicit attacks becomes crucial. This paper proposes IAR-AKA, an authentication scheme for the healthcare tactile Internet environment that surpasses conventional security. We conduct formal security proofs based on session key security and its corresponding implicit attacks, and also perform non-formal security analysis based on the relationship between implicit attacks and security goals. The output of AVISPA tool indicates IAR-AKA is secure. Furthermore, detailed performance analysis results indicate that IAR-AKA not only possesses more security attributes against implicit attacks compared to similar solutions in comparable contexts but also exhibits lower communication and computation costs.","PeriodicalId":13423,"journal":{"name":"IEEE Transactions on Network and Service Management","volume":"22 3","pages":"2396-2411"},"PeriodicalIF":4.7000,"publicationDate":"2025-02-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Network and Service Management","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10891433/","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

With the rapid advancement of 5G technology, the tactile Internet is emerging as a novel paradigm of interaction, particularly in fields like healthcare, where stringent demands for real-time and precise performance are prevalent. During the transmission and storage of medical data, malicious adversaries may attempt to compromise sensitive patient information or even disrupt the normal operation of medical devices, posing a threat to patient safety. Many existing authentication schemes claim and prove to resist various known attacks. However, subsequent research has uncovered security vulnerabilities in these schemes, primarily due to their oversight of implicit attacks, which stem from different combinations or inferences of known attacks. In this context, the design of a lightweight authentication scheme that is secure against implicit attacks becomes crucial. This paper proposes IAR-AKA, an authentication scheme for the healthcare tactile Internet environment that surpasses conventional security. We conduct formal security proofs based on session key security and its corresponding implicit attacks, and also perform non-formal security analysis based on the relationship between implicit attacks and security goals. The output of AVISPA tool indicates IAR-AKA is secure. Furthermore, detailed performance analysis results indicate that IAR-AKA not only possesses more security attributes against implicit attacks compared to similar solutions in comparable contexts but also exhibits lower communication and computation costs.

查看原文本刊更多论文

IAR-AKA：一种超越传统安全的医疗触觉互联网高效认证方案

随着5G技术的快速发展，触觉互联网正在成为一种新的交互模式，特别是在医疗保健等领域，对实时和精确性能的严格要求非常普遍。在医疗数据的传输和存储过程中，恶意攻击者可能会试图窃取患者的敏感信息，甚至破坏医疗设备的正常运行，对患者安全构成威胁。许多现有的身份验证方案声称并证明能够抵抗各种已知的攻击。然而，随后的研究发现了这些方案中的安全漏洞，主要是由于它们对隐式攻击的监督，隐式攻击源于已知攻击的不同组合或推断。在这种情况下，设计轻量级身份验证方案以防止隐式攻击变得至关重要。本文提出了一种超越传统安全的医疗触觉互联网环境认证方案IAR-AKA。我们根据会话密钥安全性及其对应的隐式攻击进行了形式化的安全证明，并根据隐式攻击与安全目标的关系进行了非形式化的安全分析。AVISPA工具的输出表明IAR-AKA是安全的。此外，详细的性能分析结果表明，与同类解决方案相比，IAR-AKA不仅具有针对隐式攻击的更多安全属性，而且具有更低的通信和计算成本。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Transactions on Network and Service Management Computer Science-Computer Networks and Communications

CiteScore

9.30

自引率

15.10%

发文量

325

期刊介绍： IEEE Transactions on Network and Service Management will publish (online only) peerreviewed archival quality papers that advance the state-of-the-art and practical applications of network and service management. Theoretical research contributions (presenting new concepts and techniques) and applied contributions (reporting on experiences and experiments with actual systems) will be encouraged. These transactions will focus on the key technical issues related to: Management Models, Architectures and Frameworks; Service Provisioning, Reliability and Quality Assurance; Management Functions; Enabling Technologies; Information and Communication Models; Policies; Applications and Case Studies; Emerging Technologies and Standards.