Warning: Undefined array key "mm" in /www/wwwroot/www.ai-bt.com/si.php on line 10 Deprecated: trim(): Passing null to parameter #1 ($string) of type string is deprecated in /www/wwwroot/www.ai-bt.com/si.php on line 10 An authentication scheme for secure access to healthcare services.

Literature DB >> 23828650

An authentication scheme for secure access to healthcare services.

Abstract

Last few decades have witnessed boom in the development of information and communication technologies. Health-sector has also been benefitted with this advancement. To ensure secure access to healthcare services some user authentication mechanisms have been proposed. In 2012, Wei et al. proposed a user authentication scheme for telecare medical information system (TMIS). Recently, Zhu pointed out offline password guessing attack on Wei et al.'s scheme and proposed an improved scheme. In this article, we analyze both of these schemes for their effectiveness in TMIS. We show that Wei et al.'s scheme and its improvement proposed by Zhu fail to achieve some important characteristics necessary for secure user authentication. We find that security problems of Wei et al.'s scheme stick with Zhu's scheme; like undetectable online password guessing attack, inefficacy of password change phase, traceability of user's stolen/lost smart card and denial-of-service threat. We also identify that Wei et al.'s scheme lacks forward secrecy and Zhu's scheme lacks session key between user and healthcare server. We therefore propose an authentication scheme for TMIS with forward secrecy which preserves the confidentiality of air messages even if master secret key of healthcare server is compromised. Our scheme retains advantages of Wei et al.'s scheme and Zhu's scheme, and offers additional security. The security analysis and comparison results show the enhanced suitability of our scheme for TMIS.

Mesh：

Year: 2013 PMID： 23828650 DOI： 10.1007/s10916-013-9954-3

Source DB: PubMed Journal: J Med Syst ISSN： 0148-5598 Impact factor: 4.460

10 in total

1. Electronic patient records and innovation in health care services.

Authors: P B Elberg
Journal: Int J Med Inform Date: 2001-12 Impact factor: 4.046

2. An efficient authentication scheme for telecare medicine information systems.

Authors: Zhian Zhu
Journal: J Med Syst Date: 2012-04-25 Impact factor: 4.460

3. An improved authentication scheme for telecare medicine information systems.

Authors: Jianghong Wei; Xuexian Hu; Wenfen Liu
Journal: J Med Syst Date: 2012-02-29 Impact factor: 4.460

4. An efficient and secure dynamic ID-based authentication scheme for telecare medical information systems.

Authors: Hung-Ming Chen; Jung-Wen Lo; Chang-Kuo Yeh
Journal: J Med Syst Date: 2012-06-07 Impact factor: 4.460

5. A secure authentication scheme for telecare medicine information systems.

Authors: Zhen-Yu Wu; Yueh-Chun Lee; Feipei Lai; Hung-Chang Lee; Yufang Chung
Journal: J Med Syst Date: 2010-10-27 Impact factor: 4.460

6. Internet integrated in the daily medical practice within an electronic patient record.

Authors: C Lovis; R H Baud; J R Scherrer
Journal: Comput Biol Med Date: 1998-09 Impact factor: 4.589

7. A more secure authentication scheme for telecare medicine information systems.

Authors: He Debiao; Chen Jianhua; Zhang Rui
Journal: J Med Syst Date: 2011-03-01 Impact factor: 4.460

8. Strong authentication scheme for telecare medicine information systems.

Authors: Qiong Pu; Jian Wang; Rongyong Zhao
Journal: J Med Syst Date: 2011-05-19 Impact factor: 4.460

9. Managing medical and insurance information through a smart-card-based information system.

Authors: C Lambrinoudakis; S Gritzalis
Journal: J Med Syst Date: 2000-08 Impact factor: 4.460

10. Meeting patients' needs with patient information systems: potential benefits of qualitative research methods.

Authors: A van't Riet; M Berg; F Hiddema; K Sol
Journal: Int J Med Inform Date: 2001-11 Impact factor: 4.046

10 in total

21 in total

10. Cryptanalysis and improvement of a user authentication scheme preserving uniqueness and anonymity for connected health care.

Authors: Lili Xu; Fan Wu
Journal: J Med Syst Date: 2015-01-29 Impact factor: 4.460

An authentication scheme for secure access to healthcare services.

1. Electronic patient records and innovation in health care services.

2. An efficient authentication scheme for telecare medicine information systems.

3. An improved authentication scheme for telecare medicine information systems.

4. An efficient and secure dynamic ID-based authentication scheme for telecare medical information systems.

5. A secure authentication scheme for telecare medicine information systems.

6. Internet integrated in the daily medical practice within an electronic patient record.

7. A more secure authentication scheme for telecare medicine information systems.

8. Strong authentication scheme for telecare medicine information systems.

9. Managing medical and insurance information through a smart-card-based information system.

10. Meeting patients' needs with patient information systems: potential benefits of qualitative research methods.

1. A Secure User Anonymity and Authentication Scheme Using AVISPA for Telecare Medical Information Systems.

2. A secure biometrics-based authentication scheme for telecare medicine information systems.

3. An enhanced security solution for electronic medical records based on AES hybrid technique with SOAP/XML and SHA-1.

4. An efficient and robust RSA-based remote user authentication for telecare medical information systems.

5. On the Security of a Two-Factor Authentication and Key Agreement Scheme for Telecare Medicine Information Systems.

6. An Improved RSA Based User Authentication and Session Key Agreement Protocol Usable in TMIS.

7. Three-factor anonymous authentication and key agreement scheme for Telecare Medicine Information Systems.

8. A Robust and Efficient ECC-based Mutual Authentication and Session Key Generation Scheme for Healthcare Applications.

Review 9. A Survey of Authentication Schemes in Telecare Medicine Information Systems.

10. Cryptanalysis and improvement of a user authentication scheme preserving uniqueness and anonymity for connected health care.