Abstract
The healthcare ecosystem is migrating from legacy systems to the Internet of Things (IoT), resulting in a digital environment. This transformation has increased importance on demanding both secure and usable user authentication methods. Recently, a post-quantum fuzzy commitment scheme (PQFC) has been constructed as a reliable and efficient method of biometric template protection. This paper presents a new two-factor-based user authentication protocol for the IoT-enabled healthcare ecosystem in post-quantum computing environments using the PQFC scheme. The proposed protocol is proved to be secure using random oracle model. Furthermore, the functionality and security of the proposed protocol are analyzed, showing that memoryless-effortless, user anonymity, mutual authentication, and resistance to biometric templates tampering and stolen attacks, stolen smart card attack, privileged interior attack are fulfilled. The costs of storage requirement, computation, communication and storage are estimated. The results demonstrate that the proposed protocol is more efficient than Mukherjee et al., Chaudhary et al., and Gupta et al. protocols.
| Original language | English |
|---|---|
| Pages (from-to) | 2347-2357 |
| Number of pages | 11 |
| Journal | Arabian Journal for Science and Engineering |
| Volume | 48 |
| Issue number | 2 |
| DOIs | |
| State | Published - Feb 2023 |
Bibliographical note
Funding Information:This work is a part of the project supported by the King Fahd University of Petroleum and Minerals under Grant SR191031.
Publisher Copyright:
© 2022, King Fahd University of Petroleum & Minerals.
Keywords
- Biometric
- Internet of Things
- IoT-enabled healthcare
- Lightweight authentication protocols
- Post-quantum cryptography
- User authentication
ASJC Scopus subject areas
- General