You are here: TUCS > PUBLICATIONS > Publication Search > SEA: A Secure and Efficient Au...
SEA: A Secure and Efficient Authentication and Authorization Architecture for IoT-Based Healthcare Using Smart Gateways
Sanaz Rahimi Moosavi, Tuan Nguyen Gia, Amir-Mohammad Rahmani, Ethiopia Nigussie, Seppo Virtanen, Jouni Isoaho, Hannu Tenhunen, SEA: A Secure and Efficient Authentication and Authorization Architecture for IoT-Based Healthcare Using Smart Gateways. In: Atta Baddi, Hossam Hassanein, Albert Zomaya (Eds.), International Conference on Ambient Systems, Networks and Technologies, 1–8, Elsevier, 2015.
Abstract:
In this paper, a secure and efficient authentication and authorization architecture for IoT-based healthcare is developed. Security and privacy of patients’ medical data are crucial for the acceptance and ubiquitous use of IoT in healthcare. Secure authentication and authorization of a remote healthcare professional is the main focus of this work. Due to resource constraints of medical sensors, it is infeasible to utilize conventional cryptography in IoT-based healthcare. In addition, gateways in existing IoTs focus only on trivial tasks without alleviating the authentication and authorization challenges. In the presented architecture, authentication and authorization of a remote end-user is done by distributed smart e-health gateways to unburden the medical sensors from performing these tasks. The proposed architecture relies on the certificate-based DTLS handshake protocol as it is the main IP security solution for IoT. The proposed authentication and authorization architecture is tested by developing a prototype IoT-based healthcare system. The prototype is built of a Pandaboard, a TI SmartRF06 board and WiSMotes. The CC2538 module integrated into the TI board acts as a smart gateway and the WisMotes act as medical sensor nodes. The proposed architecture is more secure than a state-of-the-art centralized delegation-based architecture because it uses a more secure key management scheme between sensor nodes and the smart gateway. Furthermore, the impact of DoS attacks is reduced due to the distributed nature of the architecture. Our performance evaluation results show that compared to the delegation-based architecture, the proposed architecture reduces communication overhead by 26% and communication latency from the smart gateway to the end-user by 16%.
Files:
Full publication in PDF-format
BibTeX entry:
@INPROCEEDINGS{inpRaNgRaNiViIsTe15a,
title = {SEA: A Secure and Efficient Authentication and Authorization Architecture for IoT-Based Healthcare Using Smart Gateways},
booktitle = {International Conference on Ambient Systems, Networks and Technologies},
author = {Rahimi Moosavi, Sanaz and Nguyen Gia, Tuan and Rahmani, Amir-Mohammad and Nigussie, Ethiopia and Virtanen, Seppo and Isoaho, Jouni and Tenhunen, Hannu},
editor = {Baddi, Atta and Hassanein, Hossam and Zomaya, Albert},
publisher = {Elsevier},
pages = {1–8},
year = {2015},
}
Belongs to TUCS Research Unit(s): Communication Systems (ComSys), Embedded Computer and Electronic Systems (ECES)
Publication Forum rating of this publication: level 1