• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)

Robust Biometric-based Anonymous User Authenticated Key Agreement Scheme for Telecare Medicine Information Systems

Vol. 11, No.7, July 31, 2017
10.3837/tiis.2017.07.023, Download Paper (Free):

Abstract

At present, numerous hospitals and medical institutes have implemented Telecare Medicine Information Systems (TMIS) with authentication protocols to enable secure, efficient electronic transactions for e-medicine. Numerous studies have investigated the use of authentication protocols to construct efficient, robust health care services, and recently, Liu et al. presented an authenticated key agreement mechanism for TMIS. They argued that their mechanism can prevent various types of attacks and preserve a secure environment. However, we discovered that Liu et al.’s mechanism presents some vulnerabilities. First, their mechanism uses an improper identification process for user biometrics; second, the mechanism is not guaranteed to protect against server spoofing attacks; third, there is no session key verification process in the authentication process. As such, we describe how the above-mentioned attacks operate and suggest an upgraded security mechanism for TMIS. We analyze the security and performance of our method to show that it improves security relative to comparable schemes and also operates in an efficient manner.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
Jaewook Jung, Jongho Moon and Dongho Won, "Robust Biometric-based Anonymous User Authenticated Key Agreement Scheme for Telecare Medicine Information Systems," KSII Transactions on Internet and Information Systems, vol. 11, no. 7, pp. 3720-3746, 2017. DOI: 10.3837/tiis.2017.07.023

[ACM Style]
Jung, J., Moon, J., and Won, D. 2017. Robust Biometric-based Anonymous User Authenticated Key Agreement Scheme for Telecare Medicine Information Systems. KSII Transactions on Internet and Information Systems, 11, 7, (2017), 3720-3746. DOI: 10.3837/tiis.2017.07.023